CVE-2007-3715

SUN Java System Application Server - Improper Input Validation

Title source: rule

Description

Sun Java System Application Server and Web Server 7.0 through 9.0 before 20070710 do not properly process XSLT stylesheets in XSLT transforms in XML signatures, which allows context-dependent attackers to execute an arbitrary Java method via a crafted stylesheet, a related issue to CVE-2007-3716.

References (12)

[Third Party Advisory, VDB Entry] http://osvdb.org/37248

[Vendor Advisory] http://secunia.com/advisories/26023

[Patch, Vendor Advisory] http://sunsolve.sun.com/search/document.do?assetkey=1-26-102992-1

[Vendor Advisory] http://sunsolve.sun.com/search/document.do?assetkey=1-66-200054-1

[Various Sources] http://www.isecpartners.com/advisories/2007-04-dsig.txt

[Various Sources] http://www.isecpartners.com/files/XMLDSIG_Command_Injection.pdf

[Patch] http://www.securityfocus.com/bid/24850

[Vendor Advisory] http://www.vupen.com/english/advisories/2007/2493

[Vendor Advisory] http://www.vupen.com/english/advisories/2007/2785

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/35335

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/473552/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/473553/100/0/threaded

Scores

EPSS 0.0126

EPSS Percentile 79.2%

Classification

CWE

CWE-20

Status draft

Affected Products (21)

sun/java_system_application_server

sun/java_system_application_server

sun/java_system_application_server

sun/java_system_application_server

sun/java_system_application_server

sun/java_system_application_server

sun/java_system_application_server

sun/java_system_application_server

sun/java_system_application_server

sun/java_system_application_server

sun/java_system_application_server

sun/java_system_application_server

sun/java_system_application_server

sun/java_system_application_server

sun/java_system_application_server

... and 6 more

Timeline

Published Jul 11, 2007

Tracked Since Feb 18, 2026