9 matches found
EUVD-2009-1089
Malware in sbrugna...
CVE-2009-1088
The CVE-2009-1088 entry concerns Hannon Hill Cascade Server 5.7 and other versions where remote authenticated users can trigger arbitrary code execution through a crafted XSLT stylesheet using extension elements/functions to invoke Xalan-Java (e.g., xalan://java.lang.Runtime). This is a remote co...
CVE-2009-1088
Hannon Hill Cascade Server 5.7 and other versions allows remote authenticated users to execute arbitrary programs or Java code via a crafted XSLT stylesheet with "extension elements and extension functions" that trigger code execution by Xalan-Java, as demonstrated using xalan://java.lang.Runtime...
Hannon Hill Cascade Server Command Execution
Emory University UTS Security Advisory EMORY-2009-01 Topic: Command Execution in Hannon Hill Cascade Server Original release date: March 19, 2009 SUMMARY ======= Hannon Hill's Cascade Server product is vulnerable to a command execution vulnerability. An attacker with access to an unprivileged...
Hannon Hill Cascade Server privilege escalation
Privilege escalation with XSLT files...
Command Execution in Hannon Hill Cascade Server
Emory University UTS Security Advisory EMORY-2009-01 Topic: Command Execution in Hannon Hill Cascade Server Original release date: March 19, 2009 SUMMARY ======= Hannon Hill's Cascade Server product is vulnerable to a command execution vulnerability. An attacker with access to an unprivileged...
Hannon Hill Cascade Server Command Execution Vulnerability (post auth)
No description provided by source. Emory University UTS Security Advisory EMORY-2009-01 Topic: Command Execution in Hannon Hill Cascade Server Original release date: March 19, 2009 SUMMARY ======= Hannon Hill's Cascade Server product is vulnerable to a command execution vulnerability. An attacker...
Hannon Hill Cascade Server Command Execution Vulnerability (post auth)
Exploit for cgi platform in category web applications ====================================================================== Hannon Hill Cascade Server Command Execution Vulnerability post auth ====================================================================== Emory University UTS Security...
Hannon Hill Cascade Server - (Authenticated) Command Execution
Emory University UTS Security Advisory EMORY-2009-01 Topic: Command Execution in Hannon Hill Cascade Server Original release date: March 19, 2009 SUMMARY ======= Hannon Hill's Cascade Server product is vulnerable to a command execution vulnerability. An attacker with access to an unprivileged...