CVE-2007-3794

  1. Reconshell
  2. Vulnerabilities (CVE)
  3. CVE-2007-3794
Buffer overflow in Hitachi Cosminexus V4 through V7, Processing Kit for XML before 20070511, Developer's Kit for Java before 20070312, and third-party products that use this software, allows attackers to have an unknown impact via certain GIF images, related to use of GIF image processing APIs by a Java application.

10.0 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References
Link Resource
http://www.hitachi-support.com/security_e/vuls_e/HS07-018_e/index-e.html
http://www.securityfocus.com/bid/24905
http://secunia.com/advisories/26025 Vendor Advisory
http://osvdb.org/37851
http://www.vupen.com/english/advisories/2007/2534
Advertisement

NeevaHost hosting service
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
OR cpe:2.3:a:hitachi:cosminexus_application_server:05_00_05_00_h:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_e:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_e:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_developer:05_00_05_00_h:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_developer:05_01_05_01_k:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_developer:06_50_06_50_e:*:light:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_developer:06_50_06_50_e:*:professional:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_server:04_01_04_01_a:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_server:04_01_04_01_a:*:web:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:05_01_05_01_k:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:05_05_05_00_o:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_02_06_02_f:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_02_06_02_f:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_g:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_server:04_00_04_00_a:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_developer:06_51_06_51_g:*:light:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_developer:06_50_06_50_e:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_51_06_51_g:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_studio:05_05_05_05_o:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_client:06_50_06_50_e:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_studio:04_00_04_00_a:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_developer:06_00_06_00_g:*:light:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_51_06_51_g:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_client:06_00_06_00_g:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_studio:04_00_04_00_a:*:web:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_developer:06_02_06_02_f:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_g:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_server:04_00_04_00_a:*:web:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_developer:05_05_05_05_o:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_client:06_51_06_51_g:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_client:06_02_06_02_f:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_developer:06_00_06_00_g:*:professional:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_developer:06_02_06_02_f:*:professional:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_developer:06_02_06_02_f:*:light:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_developer:06_51_06_51_g:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_studio:04_01_04_01_a:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_studio:04_01_04_01_a:*:web:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_developer:06_00_06_00_g:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_developer:06_51_06_51_g:*:professional:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
OR cpe:2.3:a:hitachi:ucosminexus_application_server:07_00_07_20:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:07_00_07_20:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_developer:06_71_06_71_b:*:light:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_developer:06_71_06_71_b:*:professional:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_a:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_client:06_70_06_70_b:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_client:06_71_06_71_b:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_developer:06_71_06_71_b:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_operator:07_00_07_20:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:06_71_06_71_b:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:06_71_06_71_b:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_developer:06_70_06_70_b:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_developer:06_70_06_70_b:*:light:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_client:07_00_07_20:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_a:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_b:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_service_architect:07_00_07_20:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_developer:06_70_06_70_b:*:professional:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_b:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_service_platform:07_00_07_20:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
OR cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_b:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_b:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_b:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:05_05_05_05_h:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_b:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_b:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_c:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_51_06_51_b:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:06_71_06_71_b:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:07_00_07_10:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_02_06_02_f:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_02_06_02_f:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:07_00_07_10:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_02_06_02_f:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_51_06_51_b:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_51_06_51_b:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_51_06_51_c:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_b:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_service_platform:07_00_07_10:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:06_71_06_71_b:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_d:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:hp:hp-ux:*:*:*:*:*:*:*:*
OR cpe:2.3:a:hitachi:cosminexus_application_server:05_05_05_05_h:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_d:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_e:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_b:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:07_00_07_10:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:07_10:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_e:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_d:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:05_02_05_02_e:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_d:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_e:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_d:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_h:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_72:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:07_00_07_10:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_e:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_b:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_h:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:07_10:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_72:*:standard:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:ibm:aix:*:*:*:*:*:*:*:*
OR cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_g:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_g:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_service_platform:07_10:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:05_00_05_00_r:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:05_05_05_05_l:*:*:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:07_00_07_10:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:07_00_07_10:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_d:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_d:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_f:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_f:*:standard:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:sun:solaris:*:*:*:*:*:*:*:*
OR cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_c:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_c:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_a:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_c:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_a:*:enterprise:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:07_00:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_c:*:standard:*:*:*:*:*
cpe:2.3:a:hitachi:ucosminexus_application_server:07_00:*:enterprise:*:*:*:*:*
Information

Published : 2007-07-15 16:30

Updated : 2011-03-07 18:57

NVD link : CVE-2007-3794

Mitre link : CVE-2007-3794

JSON object : View

CWE
NVD-CWE-Other
Advertisement

dedicated server usa
Products Affected

hitachi

  • cosminexus_studio
  • ucosminexus_operator
  • ucosminexus_service_platform
  • ucosminexus_developer
  • ucosminexus_client
  • cosminexus_client
  • cosminexus_developer
  • cosminexus_server
  • ucosminexus_application_server
  • ucosminexus_service_architect
  • cosminexus_application_server

microsoft

  • windows

sun

  • solaris

ibm

  • aix

hp

  • hp-ux

linux

  • linux_kernel