Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2007-5366
HistoryOct 11, 2007 - 10:17 a.m.

CVE-2007-5366

2007-10-1110:17:00
CWE-22
[email protected]
web.nvd.nist.gov
6

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.2

Confidence

Low

EPSS

0.008

Percentile

81.9%

JSON

The Tomcat 4.1-based Servlet Service in Fujitsu Interstage Application Server 7.0 through 9.0.0 and Interstage Apworks/Studio 7.0 through 9.0.0 allows remote attackers to obtain sensitive information (web root path) via unspecified vectors that trigger an error message, probably related to enabling the useCanonCaches Java Virtual Machine (JVM) option.

Affected configurations

Nvd
Node
fujitsuinterstage_application_serverMatch7.0enterprise
OR
fujitsuinterstage_application_serverMatch7.0plus
OR
fujitsuinterstage_application_serverMatch7.0plus_developer
OR
fujitsuinterstage_application_serverMatch7.0.1enterprise
OR
fujitsuinterstage_application_serverMatch7.0.1plus
OR
fujitsuinterstage_application_serverMatch8.0.0enterprise
OR
fujitsuinterstage_application_serverMatch8.0.0standard_j
OR
fujitsuinterstage_application_serverMatch8.0.1enterprise
OR
fujitsuinterstage_application_serverMatch8.0.1standard_j
OR
fujitsuinterstage_application_serverMatch8.0.2enterprise
OR
fujitsuinterstage_application_serverMatch8.0.2standard_j
OR
fujitsuinterstage_application_serverMatch8.0.3enterprise
OR
fujitsuinterstage_application_serverMatch8.0.3standard_j
OR
fujitsuinterstage_application_serverMatch9.0enterprise
OR
fujitsuinterstage_application_serverMatch9.0standard_j
OR
fujitsuinterstage_application_serverMatch9.0aenterprise
OR
fujitsuinterstage_application_serverMatch9.0astandard_j
OR
fujitsuinterstage_apworksMatch7.0modelers_j
OR
fujitsuinterstage_apworksMatch8.0enterprise
OR
fujitsuinterstage_apworksMatch8.0standard_j
OR
fujitsuinterstage_studioMatch8.01enterprise
OR
fujitsuinterstage_studioMatch8.01standard_j
OR
fujitsuinterstage_studioMatch9.0enterprise
OR
fujitsuinterstage_studioMatch9.0standard_j
VendorProductVersionCPE
fujitsuinterstage_application_server7.0cpe:2.3:a:fujitsu:interstage_application_server:7.0:*:enterprise:*:*:*:*:*
fujitsuinterstage_application_server7.0cpe:2.3:a:fujitsu:interstage_application_server:7.0:*:plus:*:*:*:*:*
fujitsuinterstage_application_server7.0cpe:2.3:a:fujitsu:interstage_application_server:7.0:*:plus_developer:*:*:*:*:*
fujitsuinterstage_application_server7.0.1cpe:2.3:a:fujitsu:interstage_application_server:7.0.1:*:enterprise:*:*:*:*:*
fujitsuinterstage_application_server7.0.1cpe:2.3:a:fujitsu:interstage_application_server:7.0.1:*:plus:*:*:*:*:*
fujitsuinterstage_application_server8.0.0cpe:2.3:a:fujitsu:interstage_application_server:8.0.0:*:enterprise:*:*:*:*:*
fujitsuinterstage_application_server8.0.0cpe:2.3:a:fujitsu:interstage_application_server:8.0.0:*:standard_j:*:*:*:*:*
fujitsuinterstage_application_server8.0.1cpe:2.3:a:fujitsu:interstage_application_server:8.0.1:*:enterprise:*:*:*:*:*
fujitsuinterstage_application_server8.0.1cpe:2.3:a:fujitsu:interstage_application_server:8.0.1:*:standard_j:*:*:*:*:*
fujitsuinterstage_application_server8.0.2cpe:2.3:a:fujitsu:interstage_application_server:8.0.2:*:enterprise:*:*:*:*:*
Rows per page:
1-10 of 241

Related

prion 1
cve 1
cvelist 1
prion
prion
Design/Logic Flaw
2007-10-11 10:17:00
cve
cve
CVE-2007-5366
2007-10-11 10:17:00
cvelist
cvelist
CVE-2007-5366
2007-10-11 10:00:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.2

Confidence

Low

EPSS

0.008

Percentile

81.9%

JSON
Related for NVD:CVE-2007-5366
prion1cve1cvelist1