ID
VAR-E-200701-0846
TITLE
Hitachi Web Server Multiple Vulnerabilities
Trust: 0.3
DESCRIPTION
Hitachi Web Server is prone to multiple vulnerabilities.
An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user or to bypass certain security restrictions. This may help the attacker steal cookie-based authentication credentials and launch other attacks.
Trust: 0.3
AFFECTED PRODUCTS
| vendor: | hitachi | model: | web server | scope: | ne | version: | 03-00-01 | Trust: 1.2 |
| vendor: | hitachi | model: | web server 02-04-/b | scope: | ne | version: | - | Trust: 1.2 |
| vendor: | hitachi | model: | web server for vos3 | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | hitachi | model: | web server security enhancement | scope: | eq | version: | -0 | Trust: 0.3 |
| vendor: | hitachi | model: | web server custom edition | scope: | eq | version: | -0 | Trust: 0.3 |
| vendor: | hitachi | model: | web server | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | hitachi | model: | ucosminexus service platform | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | hitachi | model: | ucosminexus service architect | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | hitachi | model: | ucosminexus developer standard | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | hitachi | model: | ucosminexus developer professional | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | hitachi | model: | ucosminexus developer light | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | hitachi | model: | ucosminexus application server standard | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | hitachi | model: | ucosminexus application server smart edition | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | hitachi | model: | ucosminexus application server enterprise ) | scope: | eq | version: | 09-80 | Trust: 0.3 |
| vendor: | hitachi | model: | cosminexus server web edition | scope: | eq | version: | 4 | Trust: 0.3 |
| vendor: | hitachi | model: | cosminexus server web edition | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | hitachi | model: | cosminexus server standard edition | scope: | eq | version: | 4 | Trust: 0.3 |
| vendor: | hitachi | model: | cosminexus server standard edition | scope: | eq | version: | 0 | Trust: 0.3 |
| vendor: | hitachi | model: | cosminexus server enterprise edition | scope: | eq | version: | -0 | Trust: 0.3 |
| vendor: | hitachi | model: | cosminexus developer standard | scope: | eq | version: | 6 | Trust: 0.3 |
| vendor: | hitachi | model: | cosminexus developer professional | scope: | eq | version: | 6 | Trust: 0.3 |
| vendor: | hitachi | model: | cosminexus developer | scope: | eq | version: | 5 | Trust: 0.3 |
| vendor: | hitachi | model: | cosminexus application server standard | scope: | eq | version: | 6 | Trust: 0.3 |
| vendor: | hitachi | model: | cosminexus application server enterprise | scope: | eq | version: | 6 | Trust: 0.3 |
| vendor: | hitachi | model: | cosminexus application server | scope: | eq | version: | 5.0 | Trust: 0.3 |
| vendor: | hitachi | model: | web server 02-06-/a | scope: | ne | version: | - | Trust: 0.3 |
| vendor: | hitachi | model: | web server 02-04-/a (windows ip | scope: | ne | version: | - | Trust: 0.3 |
EXPLOIT
Attackers can exploit these issues by using readily available networking tools and by enticing victims into following malicious links.
Trust: 0.3
PRICE
Free
Trust: 0.3
TYPE
Input Validation Error
Trust: 0.3
CREDITS
The vendor disclosed these issues.
Trust: 0.3
EXTERNAL IDS
| db: | HITACHI | id: | HS06-022 | Trust: 0.3 |
| db: | BID | id: | 22234 | Trust: 0.3 |
REFERENCES
| url: | http://www.hitachi.com/ | Trust: 0.3 |
| url: | http://www.hitachi-support.com/security_e/vuls_e/hs06-022_e/01-e.html | Trust: 0.3 |
SOURCES
| db: | BID | id: | 22234 |
LAST UPDATE DATE
2022-07-27T09:34:08.825000+00:00
SOURCES UPDATE DATE
| db: | BID | id: | 22234 | date: | 2008-12-18T14:11:00 |
SOURCES RELEASE DATE
| db: | BID | id: | 22234 | date: | 2007-01-25T00:00:00 |