CVE-2004-2764
CVE-2004-2764
Sun SDK and Java Runtime Environment (JRE) 1.4.2 through 1.4.2_04, 1.4.1 through 1.4.1_07, and 1.4.0 through 1.4.0_04 allows untrusted applets and unprivileged servlets to gain privileges and read data from other applets via unspecified vectors related to classes in the XSLT processor, aka "XML sniffing."
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://archive.cert.uni-stuttgart.de/uniras/2004/08/msg00007.htmlhttp://groups.google.com/group/comp.security.unix/tree/browse_frm/month/2004-10/fe63f1daa9689d50?rnum=161&_done=%2Fgroup%2Fcomp.security.unix%2Fbrowse_frm%2Fmonth%2F2004-10%3Ffwc%3D1%26#doc_29036353582c690dhttp://secunia.com/advisories/12206http://securitytracker.com/id?1011661https://exchange.xforce.ibmcloud.com/vulnerabilities/16864http://www.osvdb.org/8288http://www.securityfocus.com/archive/1/371208http://www.securityfocus.com/bid/10844