Aleksey : Security vulnerabilities, CVEs

CVE-2011-1425

xslt.c in XML Security Library (aka xmlsec) before 1.2.17, as used in WebKit and other products, when XSLT is enabled, allows remote attackers to create or overwrite arbitrary files via vectors involving the libxslt output extension and a ds:Transform element during signature verification.

Max CVSS

5.1

EPSS Score

1.24%

Published

2011-04-04

Updated

2017-08-17

1 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!

Accept Close

Aleksey : Security Vulnerabilities, CVEs,

CVE-2011-1425