Cross-Site Scripting Vulnerability in Fujitsu Interstage Application Server
CVE-2007-1504

Currently unrated

Key Information:

Vendor: Fujitsu
Status: Interstage Application Server; Interstage Apworks
Vendor: CVE Published:; 19 March 2007

What is CVE-2007-1504?

The Fujitsu Interstage Application Server is susceptible to a Cross-Site Scripting (XSS) vulnerability that allows attackers to inject arbitrary web scripts or HTML. This exploitation may occur through unspecified vectors related to web.xml configurations and certain HTTP status codes (404 and 500). As a result, malicious users can potentially manipulate the web interface, leading to unauthorized actions or data exposure.

References

http://www.securityfocus.com/bid/23020

vdb-entryx_refsource_BID

http://www.vupen.com/english/advisories/2007/0996

vdb-entryx_refsource_VUPEN

http://jvn.jp/jp/JVN%2383832818/index.html

third-party-advisoryx_refsource_JVN

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 19, 2007
Vulnerability Reserved
Mar 19, 2007

JSON