Wiki source code of Applications

Version 23.1 by Nicolas Gregoire on 2012/01/13 15:19
Hide last authors
Nicolas Gregoire 23.1 1 == Web (client side) ==
Nicolas Gregoire 1.1 2
Nicolas Gregoire 13.1 3 |=Application|=XSLT Engine |=Vulnerabilities
4 |Webkit-based browser|[[libxslt>>Engine_libxslt]]|File creation ([[CVE-2011-1774>>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1774||rel="__blank" title="CVE-2011-1774"]])
5 |Firefox|[[Transformiix>>Engine_Transformiix]]|\\
6 |Opera |[[Presto>>Engine_Presto]]|\\
7 |Internet Explorer|[[MS XML>>Engine_MSXML]]|\\
Nicolas Gregoire 1.1 8
Nicolas Gregoire 9.1 9 == Web (server side) ==
Nicolas Gregoire 1.1 10
Nicolas Gregoire 9.1 11 |=Application|=XSLT Engine |=Vulnerabilities
Nicolas Gregoire 18.1 12 |[[Liferay>>Application_Liferay]]|[[Xalan-J>>Engine_XalanJ]] |File disclosure ([[CVE-2011-1502>>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1502||rel="__blank" title="CVE-2011-1502"]] and [[CVE-2011-1503>>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1503||rel="__blank" title="CVE-2011-1503"]])
13 Code execution ([[CVE-2011-1571>>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1571||rel="__blank" title="CVE-2011-1571"]])
Nicolas Gregoire 15.1 14 |[[PHP 5>>Application_PHP5]]|[[libxslt>>Engine_libxslt]]|File creation (No CVE, No patch)
Nicolas Gregoire 17.1 15 |Sharepoint |[[MS XML>>Engine_MSXML]]|File disclosure ([[CVE-2011-1892>>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1892||rel="__blank" title="CVE-2011-1892"]] aka MS11-074)
Nicolas Gregoire 15.1 16 |DotNetNuke|[[MS XML>>Engine_MSXML]]|File disclosure (No CVE, patched in v06.00.00 of the XML module)
Nicolas Gregoire 1.1 17
Nicolas Gregoire 5.1 18 == Online services ==
19
Nicolas Gregoire 21.1 20 |=Application |=XSLT engine
21 | [[W3C XSLT Gateway>>http://www.w3.org/2005/08/online_xslt/]] | [[Saxon>>Engine_Saxon]]
22 | [[Online Toolz>>http://online-toolz.com/tools/xslt-transformation.php]]|[[ libxslt>>Engine_libxslt]]
23 | [[Shell Tools>>http://www.shell-tools.net/index.php?op=xslt]]| [[libxslt>>Engine_libxslt]]
24 | [[XSLT Java applet>>http://unindented.org/projects/xslt-tester-applet/]]| XSLTC from [[Xalan-J>>Engine_XalanJ]]
25
Nicolas Gregoire 1.1 26 == Office software ==
27
Nicolas Gregoire 11.1 28 |=Application|=XSLT Engine |=Vulnerabilities
Nicolas Gregoire 14.1 29 |Adobe Reader|Modified [[Sablotron>>Engine_Sablotron]] |Memory corruption (Linux only)
30 |Lifera|[[libxslt>>Engine_libxslt]]|File creation
31 |OpenOffice|[[libxslt>>Engine_libxslt]]|\\
Nicolas Gregoire 11.1 32
Nicolas Gregoire 2.1 33 == Security ==
34
Nicolas Gregoire 12.1 35 |=Application|=XSLT Engine |=Vulnerabilities
Nicolas Gregoire 20.1 36 |[[xmlsec>>Application_xmlsec]]|[[libxslt>>Engine_libxslt]]|File creation ([[CVE-2011-1425>>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1425||rel="__blank" title="CVE-2011-1425"]])
Nicolas Gregoire 19.1 37 |Lasso|[[libxslt>>Engine_libxslt]]|\\
38 |Unnamed application verifying XML-DSig signatures|[[Xalan-J>>Engine_XalanJ]]|Remote code execution