CVE-2007-5153

Published Oct 1, 2007

Last updated 8 years ago

CVSS info 6.8

Overview

Description: Unspecified vulnerability in Sun Java System Access Manager 7.1, when installed in a Sun Java System Application Server 8.x container, allows remote attackers to execute arbitrary code via unspecified vectors.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.8
Impact score: 6.4
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-94

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:sun:java_system_access_manager:7.1:*:hp-ux:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "589D3B3E-4F22-42B5-ADF1-C0537F85C4F8"
          },
          {
            "criteria": "cpe:2.3:a:sun:java_system_access_manager:7.1:*:linux:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4CCDA95C-0EFF-4CF4-8CC6-EF110F0DAE76"
          },
          {
            "criteria": "cpe:2.3:a:sun:java_system_access_manager:7.1:*:solaris_sparc:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F73D1848-D765-46B8-9B61-4A7A351CA6A0"
          },
          {
            "criteria": "cpe:2.3:a:sun:java_system_access_manager:7.1:*:solaris_x86:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "51834E30-6780-433E-9146-C4B8DEFF7CF4"
          },
          {
            "criteria": "cpe:2.3:a:sun:java_system_access_manager:7.1:*:windows:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "36C5F1CB-FEDE-4C19-B056-C846C86FDE8E"
          },
          {
            "criteria": "cpe:2.3:a:sun:java_system_application_server:8.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "721D0068-2664-4E92-9D96-9007F2120450"
          },
          {
            "criteria": "cpe:2.3:a:sun:java_system_application_server:8.1:ur1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EE7DD0A3-0001-45B0-BACB-A1388D754D6B"
          },
          {
            "criteria": "cpe:2.3:a:sun:java_system_application_server:8.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E37E6C23-C834-40EE-BC54-48D11DBCEC0E"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References