Lucene search

PRIOn knowledge basePRION:CVE-2007-5810

HistoryNov 05, 2007 - 5:46 p.m.

Authentication flaw

2007-11-0517:46:00

PRIOn knowledge base

www.prio-n.com

7.3 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.005 Low

EPSS

Percentile

74.7%

JSON

Hitachi Web Server 01-00 through 03-00-01, as used by certain Cosminexus products, does not properly validate SSL client certificates, which might allow remote attackers to spoof authentication via a client certificate with a forged signature.

CPENameOperatorVersion
cosminexus_application_server_enterpriseeq<= 651j
cosminexus_application_server_standardeq<= 651j
cosminexus_developer_light_version_6eq<= 651j
cosminexus_developer_professional_version_6eq<= 651j
cosminexus_developer_standard_version_6eq<= 651j
cosminexus_servereq<= 4-1
ucosminexus_application_server_enterpriseeq<= 7501
ucosminexus_application_server_standardeq<= 7501
ucosminexus_developer_lighteq<= 671d
ucosminexus_developer_professionaleq<= 7501

Name	Operator	Version
cosminexus_application_server_enterprise	eq	<= 651j
cosminexus_application_server_standard	eq	<= 651j
cosminexus_developer_light_version_6	eq	<= 651j
cosminexus_developer_professional_version_6	eq	<= 651j
cosminexus_developer_standard_version_6	eq	<= 651j
cosminexus_server	eq	<= 4-1
ucosminexus_application_server_enterprise	eq	<= 7501
ucosminexus_application_server_standard	eq	<= 7501
ucosminexus_developer_light	eq	<= 671d
ucosminexus_developer_professional	eq	<= 7501

Rows per page:

1-10 of 441

References

osvdb.org/42026

secunia.com/advisories/27421

www.hitachi-support.com/security_e/vuls_e/HS07-034_e/index-e.html

www.securityfocus.com/bid/26271

www.vupen.com/english/advisories/2007/3666

7.3 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.005 Low

EPSS

Percentile

74.7%

JSON

Related for PRION:CVE-2007-5810