CVE-2007-5809

Currently unrated

Key Information:

Vendor: Hitachi
Status: Web Server; Ucosminexus Application Server Standard; Ucosminexus Developer Standard; Cosminexus Application Server Enterprise
Vendor: CVE Published:; 5 November 2007

Summary

Cross-site scripting (XSS) vulnerability in Hitachi Web Server 01-00 through 03-10, as used by certain Cosminexus products, allows remote attackers to inject arbitrary web script or HTML via unspecified HTTP requests that trigger creation of a server-status page.

References

http://secunia.com/advisories/27421

third-party-advisoryx_refsource_SECUNIA

http://www.vupen.com/english/advisories/2007/3666

vdb-entryx_refsource_VUPEN

http://www.hitachi-support.com/security_e/vuls_e/HS07-035...

x_refsource_CONFIRM

Timeline

Vulnerability published
Nov 5, 2007
Vulnerability Reserved
Nov 5, 2007