CVE-2007-0514
Severity Score
6.8
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Multiple cross-site scripting (XSS) vulnerabilities in multiple Hitachi Web Server, uCosminexus, and Cosminexus products before 20070124 allow remote attackers to inject arbitrary web script or HTML via (1) HTTP Expect headers or (2) image maps.
Múltiples vulnerabilidades de secuencias de comandos en sitios cruzados (XSS) en Hitachi Web Server, uCosminexus, y productos Cosminexus anteriores al 24/01/2007 permiten a atacantes remotos inyectar secuencias de comandos web o HTML de su elección mediante (1) cabeceras HTTP Expect o (2) imágenes de mapas.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2007-01-25 CVE Reserved
- 2007-01-26 CVE Published
- 2024-03-23 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (5)
| URL | Tag | Source |
|---|---|---|
| http://osvdb.org/32997 | Vdb Entry | |
| http://osvdb.org/32998 | Vdb Entry | |
| http://secunia.com/advisories/23843 | Third Party Advisory | |
| http://www.vupen.com/english/advisories/2007/0326 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://www.hitachi-support.com/security_e/vuls_e/HS06-022_e/01-e.html | 2011-03-08 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Hitachi Search vendor "Hitachi" | Cosminexus Application Server Search vendor "Hitachi" for product "Cosminexus Application Server" | * | - |
Affected
| ||||||
| Hitachi Search vendor "Hitachi" | Cosminexus Application Server Search vendor "Hitachi" for product "Cosminexus Application Server" | 6 Search vendor "Hitachi" for product "Cosminexus Application Server" and version "6" | enterprise |
Affected
| ||||||
| Hitachi Search vendor "Hitachi" | Cosminexus Application Server Version 5 Search vendor "Hitachi" for product "Cosminexus Application Server Version 5" | * | - |
Affected
| ||||||
| Hitachi Search vendor "Hitachi" | Cosminexus Developer Light Version 6 Search vendor "Hitachi" for product "Cosminexus Developer Light Version 6" | * | - |
Affected
| ||||||
| Hitachi Search vendor "Hitachi" | Cosminexus Developer Professional Version 6 Search vendor "Hitachi" for product "Cosminexus Developer Professional Version 6" | * | - |
Affected
| ||||||
| Hitachi Search vendor "Hitachi" | Cosminexus Developer Standard Version 6 Search vendor "Hitachi" for product "Cosminexus Developer Standard Version 6" | * | - |
Affected
| ||||||
| Hitachi Search vendor "Hitachi" | Cosminexus Developer Version 5 Search vendor "Hitachi" for product "Cosminexus Developer Version 5" | * | - |
Affected
| ||||||
| Hitachi Search vendor "Hitachi" | Cosminexus Server - Enterprise Edition Search vendor "Hitachi" for product "Cosminexus Server - Enterprise Edition" | * | - |
Affected
| ||||||
| Hitachi Search vendor "Hitachi" | Cosminexus Server - Standard Edition Search vendor "Hitachi" for product "Cosminexus Server - Standard Edition" | * | - |
Affected
| ||||||
| Hitachi Search vendor "Hitachi" | Cosminexus Server - Standard Edition Version 4 Search vendor "Hitachi" for product "Cosminexus Server - Standard Edition Version 4" | * | - |
Affected
| ||||||
| Hitachi Search vendor "Hitachi" | Cosminexus Server - Web Edition Search vendor "Hitachi" for product "Cosminexus Server - Web Edition" | * | - |
Affected
| ||||||
| Hitachi Search vendor "Hitachi" | Cosminexus Server - Web Edition Version 4 Search vendor "Hitachi" for product "Cosminexus Server - Web Edition Version 4" | * | - |
Affected
| ||||||
| Hitachi Search vendor "Hitachi" | Hitachi Web Server Search vendor "Hitachi" for product "Hitachi Web Server" | * | - |
Affected
| ||||||
| Hitachi Search vendor "Hitachi" | Ucosminexus Application Server Enterprise Search vendor "Hitachi" for product "Ucosminexus Application Server Enterprise" | * | enterprise |
Affected
| ||||||
| Hitachi Search vendor "Hitachi" | Ucosminexus Application Server Smart Edition Search vendor "Hitachi" for product "Ucosminexus Application Server Smart Edition" | * | - |
Affected
| ||||||
| Hitachi Search vendor "Hitachi" | Ucosminexus Application Server Standard Search vendor "Hitachi" for product "Ucosminexus Application Server Standard" | * | - |
Affected
| ||||||
| Hitachi Search vendor "Hitachi" | Ucosminexus Developer Light Search vendor "Hitachi" for product "Ucosminexus Developer Light" | * | - |
Affected
| ||||||
| Hitachi Search vendor "Hitachi" | Ucosminexus Developer Standard Search vendor "Hitachi" for product "Ucosminexus Developer Standard" | * | - |
Affected
| ||||||
| Hitachi Search vendor "Hitachi" | Ucosminexus Service Architect Search vendor "Hitachi" for product "Ucosminexus Service Architect" | * | - |
Affected
| ||||||
| Hitachi Search vendor "Hitachi" | Ucosminexus Service Platform Search vendor "Hitachi" for product "Ucosminexus Service Platform" | * | - |
Affected
| ||||||