VRDA Feed : Provides information for vulnerability impact analysis

VRDA Feed by

Vulnerability Response Decision Assistance Feed : Information for vulnerability impact analysis

[ about VRDA Feed | JPCERT/CC ]

Vulnerability Analysis Result (Revision No : 1)

[ Download XML ]

CVE-2010-1942

interstage_application_server: Unspecified vulnerability in the Servlet service in...

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-1942

Original

Unspecified vulnerability in the Servlet service in Fujitsu Limited Interstage Application Server 3.0 through 7.0, as used in Interstage Application Framework Suite, Interstage Business Application Server, and Interstage List Manager, allows attackers to obtain sensitive information or force invalid requests to be processed via unknown vectors related to unspecified invalid requests and settings on the load balancing device.

Translation (Show)

About This Analysis Information

Analysis Information Provider:

NIST NVD

First Published:

2010-05-19

Source Information Category:

Advisory, Alert

Last Updated:

2010-05-19

Affected Product Tags

cpe:/a:fujitsu:interstage_application_server:3.0::enterprise

cpe:/a:fujitsu:interstage_application_server:3.0::standard

cpe:/a:fujitsu:interstage_application_server:4.0::enterprise

cpe:/a:fujitsu:interstage_application_server:4.0::standard

cpe:/a:fujitsu:interstage_application_server:4.0::web_j

cpe:/a:fujitsu:interstage_application_server:4.1::standard

cpe:/a:fujitsu:interstage_application_server:4.1::web_j

cpe:/a:fujitsu:interstage_application_server:5.0.1::enterprise

cpe:/a:fujitsu:interstage_application_server:5.0.1::plus_developer

cpe:/a:fujitsu:interstage_application_server:5.0::enterprise

cpe:/a:fujitsu:interstage_application_server:5.0::standard

cpe:/a:fujitsu:interstage_application_server:5.0::web_j

cpe:/a:fujitsu:interstage_application_server:6.0::enterprise

cpe:/a:fujitsu:interstage_application_server:6.0::plus

cpe:/a:fujitsu:interstage_application_server:7.0.1::enterprise

cpe:/a:fujitsu:interstage_application_server:7.0.1::plus

cpe:/a:fujitsu:interstage_application_server:7.0::enterprise

cpe:/a:fujitsu:interstage_application_server:7.0::plus

cpe:/a:fujitsu:interstage_application_server:7.0::standard

Vulnerability Analysis Results

[Access Vector] ^[?]

Undefined^[?]

Local^[?]

Adjacent Network^[?]

Network^[?]

[Access Complexit] ^[?]

Undefined^[?]

High^[?]

Medium^[?]

Low^[?]

[Authentication] ^[?]

Undefined^[?]

Multiple^[?]

Single^[?]

None^[?]

[Confidentiality Impact] ^[?]

Undefined^[?]

None^[?]

Partial^[?]

Complete^[?]

[Integrity Impact] ^[?]

Undefined^[?]

None^[?]

Partial^[?]

Complete^[?]

[Availability Impact] ^[?]

Undefined^[?]

None^[?]

Partial^[?]

Complete^[?]

Alternatives

References

BID 40189

CONFIRM http://www.fujitsu.com/global/support/software/security/products-f/interstage-201001e.html

CONFIRM http://software.fujitsu.com/jp/security/vulnerabilities/jvn-90248889.html

JVN JVN#90248889

JVNDB JVNDB-2010-000018

OSVDB 64703

SECUNIA 39803

VUPEN ADV-2010-1165

Vulnerability Type Insufficient Information (NVD-CWE-noinfo)