Vulnerability Details CVE-2007-5809
Cross-site scripting (XSS) vulnerability in Hitachi Web Server 01-00 through 03-10, as used by certain Cosminexus products, allows remote attackers to inject arbitrary web script or HTML via unspecified HTTP requests that trigger creation of a server-status page.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 55.1%
CVSS Severity
CVSS v2 Score 4.3
References
- http://osvdb.org/42027
- http://secunia.com/advisories/27421
- http://www.hitachi-support.com/security_e/vuls_e/HS07-035_e/index-e.html
- http://www.securityfocus.com/bid/26271
- http://www.vupen.com/english/advisories/2007/3666
- http://osvdb.org/42027
- http://secunia.com/advisories/27421
- http://www.hitachi-support.com/security_e/vuls_e/HS07-035_e/index-e.html
- http://www.securityfocus.com/bid/26271
- http://www.vupen.com/english/advisories/2007/3666
Products affected by CVE-2007-5809
-
cpe:2.3:a:hitachi:cosminexus_application_server_enterprise:*
-
cpe:2.3:a:hitachi:cosminexus_application_server_standard:*
-
cpe:2.3:a:hitachi:cosminexus_developer_light_version_6:*
-
cpe:2.3:a:hitachi:cosminexus_developer_professional_version_6:*
-
cpe:2.3:a:hitachi:cosminexus_developer_standard_version_6:*
-
cpe:2.3:a:hitachi:cosminexus_server:04-00
-
cpe:2.3:a:hitachi:cosminexus_server:04-00-/a
-
cpe:2.3:a:hitachi:cosminexus_server:04-01
-
cpe:2.3:a:hitachi:cosminexus_server:04-01-/a
-
cpe:2.3:a:hitachi:ucosminexus_application_server_enterprise:*
-
cpe:2.3:a:hitachi:ucosminexus_application_server_standard:*
-
cpe:2.3:a:hitachi:ucosminexus_developer_light:*
-
cpe:2.3:a:hitachi:ucosminexus_developer_professional:*
-
cpe:2.3:a:hitachi:ucosminexus_developer_standard:*
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:07-00
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:07-00-05
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:07-00-06
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:07-00-09
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:07-00-10
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:07-03-02
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:07-03-03
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:07-50-09
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:07-60
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:6.7
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:7
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:07-00
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:07-00-05
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:07-00-06
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:07-00-09
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:07-00-10
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:07-03-02
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:07-03-03
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:07-10
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:07-50-09
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:07-60
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:6.7
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:7
-
cpe:2.3:a:hitachi:web_server:01_00
-
cpe:2.3:a:hitachi:web_server:01_01
-
cpe:2.3:a:hitachi:web_server:01_01_d
-
cpe:2.3:a:hitachi:web_server:01_02_d
-
cpe:2.3:a:hitachi:web_server:01_02_e
-
cpe:2.3:a:hitachi:web_server:02_00
-
cpe:2.3:a:hitachi:web_server:02_00_a
-
cpe:2.3:a:hitachi:web_server:02_02
-
cpe:2.3:a:hitachi:web_server:02_04_b
-
cpe:2.3:a:hitachi:web_server:02_06_a
-
cpe:2.3:a:hitachi:web_server:03_00
-
cpe:2.3:a:hitachi:web_server:03_00_01