Google Search Appliance proxystylesheet XSLT Java Code Execution

Network Security News – Monday, November 21, 2005 Events

Google Search Appliance proxystylesheet XSLT Java Code Execution

The Google Search Appliance contains a flaw that allows a remote attacker to execute arbitrary Java methods as an unprivileged user. The issue is due to the proxystylesheet parameter in the search request, which loads an external XSLT style sheet from a URL. The XSLT parser is based on Saxon, which allows Java method calls from within an XSLT document. This allows an attacker to execute arbitrary code and commands on the appliance.. Read more at osvdb.org/20981