CVE-2007-1504
Summary
| CVE | CVE-2007-1504 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2007-03-19 22:19:00 UTC |
| Updated | 2017-11-21 15:44:00 UTC |
| Description | Cross-site scripting (XSS) vulnerability in the Servlet Service in Fujitsu Interstage Application Server (IJServer) 8.0.2 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly involving web.xml and HTTP 404 and 500 status codes. |
Risk And Classification
Problem Types: NVD-CWE-Other
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | VUPEN | www.vupen.com | Third Party Advisory |
| 34276 | OSVDB | osvdb.org | Broken Link |
| JVN#83832818: Interstage Application Server におけるクロスサイトスクリプティングの脆弱性 | JVN | jvn.jp | Third Party Advisory, VDB Entry |
| This page provides Security Information. : FUJITSU | CONFIRM | www.fujitsu.com | Vendor Advisory |
| IBM X-Force Exchange | XF | exchange.xforce.ibmcloud.com | VDB Entry |
| Interstage Application Server Unspecified Cross Site Scripting Vulnerability | BID | www.securityfocus.com | Third Party Advisory, VDB Entry |
| Interstage Application Server Cross-Site Scripting Vulnerability - Advisories - Secunia | SECUNIA | secunia.com | Vendor Advisory |
| JVN#83832818に関する影響 : 富士通 | MISC | software.fujitsu.com | Vendor Advisory |
| JVN:JVN#83832818 | MITRE | jvn.jp | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.