Unspecified vulnerability in the XSL Content portlet in Liferay Portal Community Edition (CE) 5.x and 6.x before 6.0.6 GA, when Apache Tomcat is used, allows remote attackers to execute arbitrary commands via unknown vectors.
References
Link | Resource |
---|---|
http://issues.liferay.com/browse/LPS-14726 | Issue Tracking Vendor Advisory |
http://issues.liferay.com/secure/ReleaseNote.jspa?version=10656&styleName=Html&projectId=10952 | Release Notes Vendor Advisory |
http://openwall.com/lists/oss-security/2011/03/29/1 | Mailing List Third Party Advisory |
http://openwall.com/lists/oss-security/2011/04/08/5 | Mailing List Third Party Advisory |
http://openwall.com/lists/oss-security/2011/04/11/9 | Mailing List Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2011-05-07 19:55
Updated : 2024-02-28 11:41
NVD link : CVE-2011-1571
Mitre link : CVE-2011-1571
CVE.ORG link : CVE-2011-1571
JSON object : View
Products Affected
liferay
- liferay_portal
CWE