Changes for page Applications

Last modified by Nicolas Gregoire on 2012/07/23 14:23
From version Icon 17.1 Icon
edited by Nicolas Gregoire
on 2012/01/13 15:11
Change comment: There is no comment for this version
To version Icon 19.1 Icon
edited by Nicolas Gregoire
on 2012/01/13 15:15
Change comment: There is no comment for this version

Summary

Details

Icon Page properties
Content
... ... @@ -9,7 +9,8 @@
9 9  == Web (server side) ==
10 10  
11 11  |=Application|=XSLT Engine |=Vulnerabilities
12 -|[[Liferay>>Application_Liferay]]|[[Xalan-J>>Engine_XalanJ]] |File disclosure ([[CVE-2011-1502>>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1502||rel="__blank" title="CVE-2011-1502"]] / [[CVE-2011-1503>>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1503||rel="__blank" title="CVE-2011-1503"]], code execution ([[CVE-2011-1571>>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1571||rel="__blank" title="CVE-2011-1571"]])
12 +|[[Liferay>>Application_Liferay]]|[[Xalan-J>>Engine_XalanJ]] |File disclosure ([[CVE-2011-1502>>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1502||rel="__blank" title="CVE-2011-1502"]] and [[CVE-2011-1503>>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1503||rel="__blank" title="CVE-2011-1503"]])
13 +Code execution ([[CVE-2011-1571>>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1571||rel="__blank" title="CVE-2011-1571"]])
13 13  |[[PHP 5>>Application_PHP5]]|[[libxslt>>Engine_libxslt]]|File creation (No CVE, No patch)
14 14  |Sharepoint |[[MS XML>>Engine_MSXML]]|File disclosure ([[CVE-2011-1892>>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1892||rel="__blank" title="CVE-2011-1892"]] aka MS11-074)
15 15  |DotNetNuke|[[MS XML>>Engine_MSXML]]|File disclosure (No CVE, patched in v06.00.00 of the XML module)
... ... @@ -31,12 +31,7 @@
31 31  
32 32  == Security ==
33 33  
34 -xmlsec : libxslt
35 -
36 -Lasso : libxslt
37 -
38 38  |=Application|=XSLT Engine |=Vulnerabilities
39 -|[[Liferay>>Application_Liferay]]|[[Xalan-J>>Engine_XalanJ]] |File disclosure, code execution
40 -|[[PHP 5>>Application_PHP5]]|[[libxslt>>Engine_libxslt]]|File creation
41 -|Sharepoint |MS XML |File disclosure
42 -|DotNetNuke|MS XML |File disclosure
36 +|[[xmlsec>>Application_xmlsec]]|[[libxslt>>Engine_libxslt]]|File creation [[CVE-2011-1425>>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1425||rel="__blank" title="CVE-2011-1425"]]
37 +|Lasso|[[libxslt>>Engine_libxslt]]|\\
38 +|Unnamed application verifying XML-DSig signatures|[[Xalan-J>>Engine_XalanJ]]|Remote code execution