4 matches found
CVE-2005-3757
creationtimestamp| type| source ---|---|--- 2010-07-01 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16907 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/googleproxystylesheetexec.rb 2025-02-06...
Google Appliance ProxyStyleSheet Command Execution
This module exploits a feature in the Saxon XSLT parser used by the Google Search Appliance. This feature allows for arbitrary java methods to be called. Google released a patch and advisory to their client base in August of 2005 GA-2005-08-m. The target appliance must be able to connect back to...
CVE-2005-3757
The CVE-2005-3757 issue affects the Saxon XSLT parser used by Google Mini Search Appliance (and possibly Google Search Appliance). The vulnerability arises from dangerous Java methods (system-property, sys:getProperty, run:exec) in the select attribute of xsl:value-of in XSLT style sheets, enabli...
CVE-2005-3757
Removed by vendor...