Jon Passki

Name of the Vulnerable Software and Affected Versions: Spring Framework versions prior to 3.2.2 Description: The issue allows remote attackers to conduct cross-site scripting (XSS) attacks via specific Unicode characters, including line separator, paragraph separator, left angle bracket, or right angle bracket, due to improper escaping by the `javascriptEscape` method in `JavaScriptUtils.java`. Recommendations: For versions prior to 3.2.2, update to version 3.2.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** JBoss Seam 2 framework versions 2.3.1 and earlier **Description** The issue concerns Multiple XML External Entity (XXE) vulnerabilities in certain classes of JBoss Seam Remoting. These vulnerabilities allow remote attackers to read arbitrary files and possibly have other impacts via a crafted XML file. The affected classes include ExecutionHandler, PollHandler, and SubscriptionHandler. **Recommendations** For JBoss Seam 2 framework versions 2.3.1 and earlier, consider updating to a version that addresses these XXE vulnerabilities. As a temporary workaround, restrict access to the ExecutionHandler, PollHandler, and SubscriptionHandler classes to minimize the risk of exploitation. Avoid processing crafted XML files until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Apache Struts versions prior to 2.3.14.3 **Description** The issue is related to the implementation of the OGNL (Object-Graph Navigation Language) expression language class in the Apache Struts platform, which is associated with incorrect code generation management. This allows a remote attacker to execute arbitrary code by sending a specially crafted request that contains both "${}" and "%{}" sequences, causing the OGNL code to be evaluated twice. **Recommendations** For Apache Struts versions prior to 2.3.14.3, update to version 2.3.14.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the OGNL expression language class to minimize the risk of exploitation. Avoid using the `${}` and `%{}` sequences in requests until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Apache Struts versions prior to 2.3.14.3 **Description** The issue is related to the implementation of the OGNL (Object-Graph Navigation Language) expression language class in the Apache Struts platform, which is associated with incorrect code generation management. Exploitation of this issue may allow a remote attacker to execute arbitrary code by sending a specially crafted request. **Recommendations** For versions prior to 2.3.14.3, update to version 2.3.14.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the OGNL expression language class to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** CA SiteMinder R6 SP6 before CR7 CA SiteMinder R12 SP3 before CR8 **Description** A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML via the `postpreservationdata` parameter in the login.fcc component. This could potentially lead to unauthorized actions on behalf of the user. **Recommendations** For CA SiteMinder R6 SP6, update to CR7 or later to resolve the issue. For CA SiteMinder R12 SP3, update to CR8 or later to resolve the issue. As a temporary workaround, consider restricting access to the login.fcc component to minimize the risk of exploitation. Avoid using the `postpreservationdata` parameter in the affected component until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Apple iTunes versions prior to 9.1 **Description** The issue allows local users to gain console privileges through vectors related to log files, "insecure file operation," and syncing an iPhone, iPad, or iPod touch. **Recommendations** For versions prior to 9.1, update to version 9.1 or later to resolve the issue.