CVE-2011-1425

Related Files

Debian Security Advisory 2219-1

Posted Apr 19, 2011

Authored by Debian | Site debian.org

Debian Linux Security Advisory 2219-1 - Nicolas Gregoire discovered that the XML Security Library xmlsec allowed remote attackers to create or overwrite arbitrary files through specially crafted XML files using the libxslt output extension and a ds:Transform element during signature verification.

tags | advisory, remote, arbitrary

systems | linux, debian

advisories | CVE-2011-1425

SHA-256 | 8596d7fee486d5be0cd92951972238ede30863f97d4377e447181a95a8d59845

Download | Favorite | View

Mandriva Linux Security Advisory 2011-063

Posted Apr 4, 2011

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2011-063 - xslt.c in XML Security Library before 1.2.17, as used in WebKit and other products, when XSLT is enabled, allows remote attackers to create or overwrite arbitrary files via vectors involving the libxslt output extension and a ds:Transform element during signature verification.

tags | advisory, remote, arbitrary

systems | linux, mandriva

advisories | CVE-2011-1425

SHA-256 | 03676e8800dd4f2484e21c820bde4c6bd3aa8089ea8f4d526c12470af6ef5eac

Download | Favorite | View