CVE-2007-5366

Sažetak

The Tomcat 4.1-based Servlet Service in Fujitsu Interstage Application Server 7.0 through 9.0.0 and Interstage Apworks/Studio 7.0 through 9.0.0 allows remote attackers to obtain sensitive information (web root path) via unspecified vectors that trigger an error message, probably related to enabling the useCanonCaches Java Virtual Machine (JVM) option.

Reference

http://osvdb.org/41318
http://secunia.com/advisories/27136
http://www.fujitsu.com/global/support/software/security/products-f/interstage-200705e.html
http://www.securityfocus.com/bid/25988
https://exchange.xforce.ibmcloud.com/vulnerabilities/37026

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

29-07-2017 - 01:33

Objavljeno

11-10-2007 - 10:17