Buffer Overflow Vulnerability in Fujitsu Interstage Application Server and Studio
CVE-2008-1040

Currently unrated

Key Information:

Vendor: Fujitsu
Status: Interstage Application Server Enterprise; Interstage Application Server Standard J; Interstage Studio Enterprise; Interstage Apworks Standard J
Vendor: CVE Published:; 27 February 2008

What is CVE-2008-1040?

A buffer overflow vulnerability exists in the Single Sign-On function of Fujitsu Interstage Application Server versions 8.0.0 through 8.0.3 and 9.0.0, as well as Interstage Studio versions 8.0.1 and 9.0.0, and Interstage Apworks 8.0.0. This flaw allows remote attackers to execute arbitrary code by submitting a specially crafted long URI, potentially leading to unauthorized access and compromise of the affected systems. Organizations utilizing these products should apply the necessary patches and updates to mitigate the risks associated with this vulnerability.

References

http://www.securityfocus.com/bid/27966

vdb-entryx_refsource_BID

http://www.vupen.com/english/advisories/2008/0662

vdb-entryx_refsource_VUPEN

http://secunia.com/advisories/29088

third-party-advisoryx_refsource_SECUNIA

EPSS Score

5% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 27, 2008
Vulnerability Reserved
Feb 27, 2008

JSON