j2sdk
Page content
- Author: vmiklos
- Vulnerable: 6-1
- Unaffected: 6-2terminus1
Brad Hill has reported a vulnerability in Sun JDK and JRE, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to an error when processing XSLT stylesheets contained in XSLT Transforms in XML signatures. This can be exploited to execute arbitrary code when an application processes a specially crafted XML signature.
- Bug Tracker URL: http://bugs.frugalware.org/task/2255