Lucene search
K

46 matches found

OSV
OSV
added 2008/05/23 3:32 p.m.2 views

DEBIAN-CVE-2008-1767

Buffer overflow in pattern.c in libxslt before 1.1.24 allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via an XSL style sheet file with a long XSLT "transformation match" condition that triggers a large number of steps...

7.5CVSS9.3AI score0.1279EPSS
Exploits2References1
RedHat Linux
RedHat Linux
added 2008/05/21 7:30 a.m.8 views

libxslt: fixed-sized steps array overflow via "template match" condition in XSL file

Buffer overflow in pattern.c in libxslt before 1.1.24 allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via an XSL style sheet file with a long XSLT "transformation match" condition that triggers a large number of steps...

7.5CVSS7.8AI score0.1279EPSS
Exploits2References4
securityvulns
securityvulns
added 2002/05/27 12:0 a.m.28 views

[NT] Excel XP XML Stylesheet Security Problem

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion When was the last time you checked your server's security? How about a monthly report? http://www.AutomatedScanning.com - Know that you're...

7.6AI score
Exploits0
Cvelist
Cvelist
added 2001/05/07 4:0 a.m.23 views

CVE-2001-0126

Oracle XSQL servlet 1.0.3.0 and earlier allows remote attackers to execute arbitrary Java code by redirecting the XSQL server to another source via the xml-stylesheet parameter in the xslt stylesheet...

7.3AI score0.0403EPSS
Exploits0References3
CVE
CVE
added 2001/05/07 4:0 a.m.67 views

CVE-2001-0126

The vulnerability CVE-2001-0126 affects Oracle XSQL Servlet (versions 1.0.3.0 and earlier). An attacker can remotely cause arbitrary Java code execution by redirecting the XSQL server to a malicious source via the xml-stylesheet parameter in the XSLT stylesheet used by an XSQL page. This is a net...

7.5CVSS7.3AI score0.0403EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2001/03/12 5:0 a.m.24 views

CVE-2001-0126

Oracle XSQL servlet 1.0.3.0 and earlier allows remote attackers to execute arbitrary Java code by redirecting the XSQL server to another source via the xml-stylesheet parameter in the xslt stylesheet...

7.5CVSS7.3AI score0.0403EPSS
Exploits0References3
Rows per page
Query Builder