Apache Software Foundation Batik Squiggle Browser Access Validation Vulnerability
BID:12619
Info
Apache Software Foundation Batik Squiggle Browser Access Validation Vulnerability
| Bugtraq ID: | 12619 |
| Class: | Access Validation Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Feb 22 2005 12:00AM |
| Updated: | Feb 22 2005 12:00AM |
| Credit: | The individual or individuals responsible for the discovery of this issue are currently unknown; the vendor disclosed this issue. |
| Vulnerable: |
Apache Batik 1.5 Apache Batik 1.1.1 Apache Batik 1.1 Apache Batik 1.0 |
| Not Vulnerable: |
Apache Batik 1.6 |
Discussion
Apache Software Foundation Batik Squiggle Browser Access Validation Vulnerability
An access validation error affects Apache Software Foundation Batik Squiggle Browser. This issue is due to a failure of the affected application to properly regulate access to sensitive system resources.
An attacker may leverage this issue to gain unauthorized access to potentially sensitive system resources such as the files system. Other attacks may also be possible.
An access validation error affects Apache Software Foundation Batik Squiggle Browser. This issue is due to a failure of the affected application to properly regulate access to sensitive system resources.
An attacker may leverage this issue to gain unauthorized access to potentially sensitive system resources such as the files system. Other attacks may also be possible.
Exploit / POC
Apache Software Foundation Batik Squiggle Browser Access Validation Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution / Fix
Apache Software Foundation Batik Squiggle Browser Access Validation Vulnerability
Solution:
The vendor has released an upgrade dealing with this issue.
Apache Batik 1.0
Apache Batik 1.1
Apache Batik 1.1.1
Apache Batik 1.5
Solution:
The vendor has released an upgrade dealing with this issue.
Apache Batik 1.0
-
Apache Software Foundation Batik 1.5.1
http://www.apache.org/dyn/closer.cgi/xml/batik
Apache Batik 1.1
-
Apache Software Foundation Batik 1.5.1
http://www.apache.org/dyn/closer.cgi/xml/batik
Apache Batik 1.1.1
-
Apache Software Foundation Batik 1.5.1
http://www.apache.org/dyn/closer.cgi/xml/batik
Apache Batik 1.5
-
Apache Software Foundation Batik 1.5.1
http://www.apache.org/dyn/closer.cgi/xml/batik
References
Apache Software Foundation Batik Squiggle Browser Access Validation Vulnerability
References:
References:
- Batik 1.5.1 - Script Security Warning (Apache Software Foundation)
- Batik Home Page (Apache Software Foundation)