Lucene search

[email protected]NVD:CVE-2007-5153

HistoryOct 01, 2007 - 5:17 a.m.

CVE-2007-5153

2007-10-0105:17:00

CWE-94

[email protected]

web.nvd.nist.gov

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.7

Confidence

Low

EPSS

0.145

Percentile

95.8%

JSON

Unspecified vulnerability in Sun Java System Access Manager 7.1, when installed in a Sun Java System Application Server 8.x container, allows remote attackers to execute arbitrary code via unspecified vectors.

Affected configurations

Nvd

Node

sunjava_system_access_managerMatch7.1hp-ux

sunjava_system_access_managerMatch7.1linux

sunjava_system_access_managerMatch7.1solaris_sparc

sunjava_system_access_managerMatch7.1solaris_x86

sunjava_system_access_managerMatch7.1windows

sunjava_system_application_serverMatch8.1

sunjava_system_application_serverMatch8.1ur1

sunjava_system_application_serverMatch8.2

VendorProductVersionCPE
sunjava_system_access_manager7.1cpe:2.3:a:sun:java_system_access_manager:7.1:*:hp-ux:*:*:*:*:*
sunjava_system_access_manager7.1cpe:2.3:a:sun:java_system_access_manager:7.1:*:linux:*:*:*:*:*
sunjava_system_access_manager7.1cpe:2.3:a:sun:java_system_access_manager:7.1:*:solaris_sparc:*:*:*:*:*
sunjava_system_access_manager7.1cpe:2.3:a:sun:java_system_access_manager:7.1:*:solaris_x86:*:*:*:*:*
sunjava_system_access_manager7.1cpe:2.3:a:sun:java_system_access_manager:7.1:*:windows:*:*:*:*:*
sunjava_system_application_server8.1cpe:2.3:a:sun:java_system_application_server:8.1:*:*:*:*:*:*:*
sunjava_system_application_server8.1cpe:2.3:a:sun:java_system_application_server:8.1:ur1:*:*:*:*:*:*
sunjava_system_application_server8.2cpe:2.3:a:sun:java_system_application_server:8.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
sun	java_system_access_manager	7.1	cpe:2.3:a:sun:java_system_access_manager:7.1::hp-ux:::::
sun	java_system_access_manager	7.1	cpe:2.3:a:sun:java_system_access_manager:7.1::linux:::::
sun	java_system_access_manager	7.1	cpe:2.3:a:sun:java_system_access_manager:7.1::solaris_sparc:::::
sun	java_system_access_manager	7.1	cpe:2.3:a:sun:java_system_access_manager:7.1::solaris_x86:::::
sun	java_system_access_manager	7.1	cpe:2.3:a:sun:java_system_access_manager:7.1::windows:::::
sun	java_system_application_server	8.1	cpe:2.3:a:sun:java_system_application_server:8.1:::::::*
sun	java_system_application_server	8.1	cpe:2.3:a:sun:java_system_application_server:8.1:ur1::::::
sun	java_system_application_server	8.2	cpe:2.3:a:sun:java_system_application_server:8.2:::::::*

References

osvdb.org/37757

secunia.com/advisories/26976

securitytracker.com/id?1018753

sunsolve.sun.com/search/document.do?assetkey=1-26-103069-1

sunsolve.sun.com/search/document.do?assetkey=1-66-200839-1

www.securityfocus.com/bid/25842

www.vupen.com/english/advisories/2007/3282

exchange.xforce.ibmcloud.com/vulnerabilities/36847

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.7

Confidence

Low

EPSS

0.145

Percentile

95.8%

JSON

Related for NVD:CVE-2007-5153

cvelist1 cve1 prion1