Note: This is an archival copy of Security Sun Alert 200080 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1000064.1.
Sun Java System Portal Server 7
Date of Resolved Release
Sun Java System Portal Server Software 7.0 may not securely process XSLT style sheets contained in XSLT Transforms in XML Signatures. This may allow malicious XLST style sheets to be executed. For example, an arbitrary Java method could be executed due to this vulnerability.
Sun acknowledges, with thanks, Brad Hill of iSEC Partners, for bringing this issue to our attention.
This issue can occur in the following releases:
To determine the version of Sun Java System Portal Server Software installed on a system, the following command can be run:
# <PS_INSTALL_DIR>/bin/psadmin version -u amadmin -f passwordFile Mon Dec 12 01:10:23 PST 2005 Sun Java(tm) System Portal Server 7.0
Note: Portal Server Software versions 6.3.1 or earlier and versions 7.1 and 7.1u1 are not impacted by this issue.
There are no predictable symptoms that would indicate the described issue has been exploited.
There is no workaround for this issue. Please see the Resolution section below.
This issue is addressed in the following releases:
This solution has no attachment