CVSS: 4.3EPSS: 0%CPEs: 40EXPL: 0CVE-2008-0876
https://notcve.org/view.php?id=CVE-2008-0876
Unspecified vulnerability in the SEWB3 messaging service in Hitachi SEWB3/PLATFORM and SEWB3/MI-PLATFORM 01-00 through 02-14-/A allows remote attackers to cause a denial of service (service outage) via "invalid data." Vulnerabilidad no especificada en el servicio de mensajería SEWB3 de Hitachi SEWB3/PLATFORM y SEWB3/MI-PLATFORM 01-00 hasta 02-14-/A permite a atacantes remotos provocar una denegación de servicio (parada del servicio) a través de "datos inválidos". • http://secunia.com/advisories/29028 http://www.hitachi-support.com/security_e/vuls_e/HS08-002_e/index-e.html http://www.securityfocus.com/bid/27900 http://www.vupen.com/english/advisories/2008/0617 • CWE-20: Improper Input Validation •
CVSS: 5.0EPSS: 1%CPEs: 1EXPL: 0CVE-2007-6146
https://notcve.org/view.php?id=CVE-2007-6146
Hitachi JP1/File Transmission Server/FTP 01-00 through 08-10-02 on Windows might allow remote attackers to cause a denial of service (service stop) via a "specific file" argument to an FTP command. Hitachi JP1/File Transmission Server/FTP 01-00 through 08-10-02 sobre Windows podría permitir a atacantes remotos provocar una denegación de servicio (parada del servicio) mediante un "archivo específico" como argumento para un comando FTP. • http://osvdb.org/42354 http://secunia.com/advisories/27735 http://www.hitachi-support.com/security_e/vuls_e/HS07-038_e/index-e.html http://www.securityfocus.com/bid/26542 http://www.vupen.com/english/advisories/2007/3957 • CWE-20: Improper Input Validation •
CVSS: 5.0EPSS: 3%CPEs: 176EXPL: 0CVE-2007-6145
https://notcve.org/view.php?id=CVE-2007-6145
Unspecified vulnerability in Hitachi JP1/File Transmission Server/FTP 01-00 through 08-10-01 allows remote attackers to bypass authentication and "view files" via unspecified vectors. Vulnerabilidad no especificada en Hitachi JP1/File Transmission Server/FTP 01-00 hasta 08-10-01 permite a atacantes remotos evitar la autenticación y "ver archivos" a través de vectores no especificados. • http://osvdb.org/42353 http://secunia.com/advisories/27735 http://www.hitachi-support.com/security_e/vuls_e/HS07-037_e/index-e.html http://www.securityfocus.com/bid/26530 http://www.vupen.com/english/advisories/2007/3957 https://exchange.xforce.ibmcloud.com/vulnerabilities/38610 • CWE-287: Improper Authentication •
CVSS: 4.3EPSS: 0%CPEs: 44EXPL: 0CVE-2007-5809
https://notcve.org/view.php?id=CVE-2007-5809
Cross-site scripting (XSS) vulnerability in Hitachi Web Server 01-00 through 03-10, as used by certain Cosminexus products, allows remote attackers to inject arbitrary web script or HTML via unspecified HTTP requests that trigger creation of a server-status page. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en Hitachi Web Server 01-00 hasta 03-10, tal y como se usa en determinados productos Cosminexus, permite a atacantes remotos inyectar scripts web o HTML de su elección mediante peticiones HTTP no especificadas que disparan la creación de una página estado-de-servidor. • http://osvdb.org/42027 http://secunia.com/advisories/27421 http://www.hitachi-support.com/security_e/vuls_e/HS07-035_e/index-e.html http://www.securityfocus.com/bid/26271 http://www.vupen.com/english/advisories/2007/3666 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.0EPSS: 0%CPEs: 44EXPL: 0CVE-2007-5810
https://notcve.org/view.php?id=CVE-2007-5810
Hitachi Web Server 01-00 through 03-00-01, as used by certain Cosminexus products, does not properly validate SSL client certificates, which might allow remote attackers to spoof authentication via a client certificate with a forged signature. Hitachi Web Server 01-00 hasta 03-00-01, tal y como se usa en determinados productos Cosminexus, no valida apropiadamente certificados SSL cliente, lo cual podría permitir a atacantes remotos suplantar autenticación mediante un certificado cliente con una firma falsificada. • http://osvdb.org/42026 http://secunia.com/advisories/27421 http://www.hitachi-support.com/security_e/vuls_e/HS07-034_e/index-e.html http://www.securityfocus.com/bid/26271 http://www.vupen.com/english/advisories/2007/3666 • CWE-20: Improper Input Validation •