Vulnerability Details CVE-2007-0514
Multiple cross-site scripting (XSS) vulnerabilities in multiple Hitachi Web Server, uCosminexus, and Cosminexus products before 20070124 allow remote attackers to inject arbitrary web script or HTML via (1) HTTP Expect headers or (2) image maps.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.9%
CVSS Severity
CVSS v2 Score 6.8
References
- http://osvdb.org/32997
- http://osvdb.org/32998
- http://secunia.com/advisories/23843
- http://www.hitachi-support.com/security_e/vuls_e/HS06-022_e/01-e.html
- http://www.vupen.com/english/advisories/2007/0326
- http://osvdb.org/32997
- http://osvdb.org/32998
- http://secunia.com/advisories/23843
- http://www.hitachi-support.com/security_e/vuls_e/HS06-022_e/01-e.html
- http://www.vupen.com/english/advisories/2007/0326
Products affected by CVE-2007-0514
-
cpe:2.3:a:hitachi:cosminexus_application_server:05-00
-
cpe:2.3:a:hitachi:cosminexus_application_server:05-00-/i
-
cpe:2.3:a:hitachi:cosminexus_application_server:05-00-/s
-
cpe:2.3:a:hitachi:cosminexus_application_server:05-01
-
cpe:2.3:a:hitachi:cosminexus_application_server:05-01-/l
-
cpe:2.3:a:hitachi:cosminexus_application_server:05-02
-
cpe:2.3:a:hitachi:cosminexus_application_server:05-02-/e
-
cpe:2.3:a:hitachi:cosminexus_application_server:05-05
-
cpe:2.3:a:hitachi:cosminexus_application_server:05-05-/i
-
cpe:2.3:a:hitachi:cosminexus_application_server:05-05-/o
-
cpe:2.3:a:hitachi:cosminexus_application_server:05-05-/p
-
cpe:2.3:a:hitachi:cosminexus_application_server:05_00_05_05_e
-
cpe:2.3:a:hitachi:cosminexus_application_server:05_00_05_05_f
-
cpe:2.3:a:hitachi:cosminexus_application_server:05_00_05_05_h
-
cpe:2.3:a:hitachi:cosminexus_application_server:05_00_05_05_k
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-00
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-00-/a
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-00-/b
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-00-/e
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-00-/i
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-02
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-02-/d
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-02-/f
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-02-/g
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-50
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-50-/b
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-50-/c
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-50-/e
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-50-/f
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-50-/i
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-51
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-51-/b
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-51-/e
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-51-/k
-
cpe:2.3:a:hitachi:cosminexus_application_server:5
-
cpe:2.3:a:hitachi:cosminexus_application_server:6
-
cpe:2.3:a:hitachi:cosminexus_application_server_version_5:*
-
cpe:2.3:a:hitachi:cosminexus_developer_light_version_6:*
-
cpe:2.3:a:hitachi:cosminexus_developer_professional_version_6:*
-
cpe:2.3:a:hitachi:cosminexus_developer_standard_version_6:*
-
cpe:2.3:a:hitachi:cosminexus_developer_version_5:*
-
cpe:2.3:a:hitachi:cosminexus_server_-_enterprise_edition:*
-
cpe:2.3:a:hitachi:cosminexus_server_-_standard_edition:*
-
cpe:2.3:a:hitachi:cosminexus_server_-_standard_edition_version_4:*
-
cpe:2.3:a:hitachi:cosminexus_server_-_web_edition:*
-
cpe:2.3:a:hitachi:cosminexus_server_-_web_edition_version_4:*
-
cpe:2.3:a:hitachi:hitachi_web_server:*
-
cpe:2.3:a:hitachi:ucosminexus_application_server_enterprise:*
-
cpe:2.3:a:hitachi:ucosminexus_application_server_smart_edition:*
-
cpe:2.3:a:hitachi:ucosminexus_application_server_standard:*
-
cpe:2.3:a:hitachi:ucosminexus_developer_light:*
-
cpe:2.3:a:hitachi:ucosminexus_developer_standard:*
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:07-00
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:07-00-05
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:07-00-06
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:07-00-09
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:07-00-10
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:07-03-02
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:07-03-03
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:07-50-09
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:07-60
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:08-00
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:08-00-01
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:08-00-02
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:6.7
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:7
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:8
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:07-00
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:07-00-05
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:07-00-06
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:07-00-09
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:07-00-10
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:07-03-02
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:07-03-03
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:07-10
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:07-50-09
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:07-60
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:08-00
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:08-00-01
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:08-00-02
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:6.7
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:7
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:8