CVE-2007-3715

2007-07-11T23:30:00
ID CVE-2007-3715
Type cve
Reporter cve@mitre.org
Modified 2018-10-15T21:29:00

Description

Sun Java System Application Server and Web Server 7.0 through 9.0 before 20070710 do not properly process XSLT stylesheets in XSLT transforms in XML signatures, which allows context-dependent attackers to execute an arbitrary Java method via a crafted stylesheet, a related issue to CVE-2007-3716.