CVE-2007-5366

Published Oct 11, 2007

Last updated 8 years ago

CVSS info 5.0

Overview

Description: The Tomcat 4.1-based Servlet Service in Fujitsu Interstage Application Server 7.0 through 9.0.0 and Interstage Apworks/Studio 7.0 through 9.0.0 allows remote attackers to obtain sensitive information (web root path) via unspecified vectors that trigger an error message, probably related to enabling the useCanonCaches Java Virtual Machine (JVM) option.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:N/A:N

Weaknesses

nvd@nist.gov: CWE-22

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:fujitsu:interstage_application_server:7.0:*:enterprise:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "99AC7276-3FF3-42D0-AA5A-E807C916E1AD"
          },
          {
            "criteria": "cpe:2.3:a:fujitsu:interstage_application_server:7.0:*:plus:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CEEEE36C-E14C-4D0F-B382-0903D104E578"
          },
          {
            "criteria": "cpe:2.3:a:fujitsu:interstage_application_server:7.0:*:plus_developer:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C23324B8-E010-4E21-ADEF-58FC0A0D2BFB"
          },
          {
            "criteria": "cpe:2.3:a:fujitsu:interstage_application_server:7.0.1:*:enterprise:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "390FBC71-1CF2-4D05-9931-9F4E7ED9C096"
          },
          {
            "criteria": "cpe:2.3:a:fujitsu:interstage_application_server:7.0.1:*:plus:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BDD9380C-8224-44C5-9688-F3134A6A0C04"
          },
          {
            "criteria": "cpe:2.3:a:fujitsu:interstage_application_server:8.0.0:*:enterprise:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E7F2EDBD-8799-4EAF-9925-3C07FAEEBE77"
          },
          {
            "criteria": "cpe:2.3:a:fujitsu:interstage_application_server:8.0.0:*:standard_j:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AA6ED703-53F9-4536-8E1D-46C30E547B06"
          },
          {
            "criteria": "cpe:2.3:a:fujitsu:interstage_application_server:8.0.1:*:enterprise:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "68B3EF82-0491-41D1-AB3F-FED1012F3BDF"
          },
          {
            "criteria": "cpe:2.3:a:fujitsu:interstage_application_server:8.0.1:*:standard_j:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DA20FDEB-40D5-4F73-B365-AD025C7348DD"
          },
          {
            "criteria": "cpe:2.3:a:fujitsu:interstage_application_server:8.0.2:*:enterprise:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BCD4B39A-E25A-4F9F-8D8F-D0990DFC9DF8"
          },
          {
            "criteria": "cpe:2.3:a:fujitsu:interstage_application_server:8.0.2:*:standard_j:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "28BB7A8E-8AC3-4FC3-8668-067124DF4091"
          },
          {
            "criteria": "cpe:2.3:a:fujitsu:interstage_application_server:8.0.3:*:enterprise:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "413AB29F-2B9D-409B-A24B-2660347317EB"
          },
          {
            "criteria": "cpe:2.3:a:fujitsu:interstage_application_server:8.0.3:*:standard_j:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "90E8DFDD-8909-4317-B87A-768013BECB7A"
          },
          {
            "criteria": "cpe:2.3:a:fujitsu:interstage_application_server:9.0:*:enterprise:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "63C58135-5452-47A0-BB14-BC5A3B14B043"
          },
          {
            "criteria": "cpe:2.3:a:fujitsu:interstage_application_server:9.0:*:standard_j:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CE82AE4E-4E65-437B-B367-A6905400D372"
          },
          {
            "criteria": "cpe:2.3:a:fujitsu:interstage_application_server:9.0a:*:enterprise:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B435EA8E-21BE-491B-81E6-7A02DBE9A5DF"
          },
          {
            "criteria": "cpe:2.3:a:fujitsu:interstage_application_server:9.0a:*:standard_j:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "93B3414A-9521-43C4-87EC-151FF3567203"
          },
          {
            "criteria": "cpe:2.3:a:fujitsu:interstage_apworks:7.0:*:modelers_j:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5CD7B921-18CA-47B7-B020-9B3371485007"
          },
          {
            "criteria": "cpe:2.3:a:fujitsu:interstage_apworks:8.0:*:enterprise:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D9D08EBC-EAB5-4D2F-9B62-BA96D9B25EB6"
          },
          {
            "criteria": "cpe:2.3:a:fujitsu:interstage_apworks:8.0:*:standard_j:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E44622B8-0EFE-4A80-BB0D-0D2646D067AD"
          },
          {
            "criteria": "cpe:2.3:a:fujitsu:interstage_studio:8.01:*:enterprise:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6D12EF8C-FEAB-4666-8F7E-49CAD77933B9"
          },
          {
            "criteria": "cpe:2.3:a:fujitsu:interstage_studio:8.01:*:standard_j:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3605D6E6-2C4D-4837-9587-C12645022582"
          },
          {
            "criteria": "cpe:2.3:a:fujitsu:interstage_studio:9.0:*:enterprise:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DB3CDB47-DF42-4988-A7A3-1908FC36017D"
          },
          {
            "criteria": "cpe:2.3:a:fujitsu:interstage_studio:9.0:*:standard_j:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "763121B4-8990-4876-B0DC-D7F75A1300A1"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References