Authentication flaw

2017-10-3014:29:00

PRIOn knowledge base

www.prio-n.com

8.4 High

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.9%

JSON

The XSLTCompiledTransform function in Ektron Content Management System (CMS) before 8.02 SP5 configures the XSL with enableDocumentFunction set to true, which allows remote attackers to read arbitrary files and consequently bypass authentication, modify viewstate, cause a denial of service, or possibly have unspecified other impact via crafted XSL data.

CPENameOperatorVersion
ektron_content_management_systemle8.02

CPE	Name	Operator	Version
	ektron_content_management_system	le	8.02

References

documentation.ektron.com/current/ReleaseNotes/Release8/8.02SP5.htm

technet.microsoft.com/library/security/msvr12-016

webstersprodigy.net/2012/10/25/cve-2012-5357cve-1012-5358-cool-ektron-xslt-rce-bugs/