Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5281

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2007-5281
Last Modified 07 Mar 2011 10:00:25
Published 08 Oct 2007 08:17:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-5281

Summary

The Java Secure Socket Extension (JSSE) in the Hitachi Cosminexus Developer's Kit for Java in various Hitachi Cosminexus 7.5 products before 07-50-01, when using JSSE for SSL/TLS support, allows remote attackers to cause a denial of service via certain SSL/TLS handshake requests. NOTE: this may be the same as CVE-2007-3698.

Vulnerable Systems

Application

  • Hitachi Ucosminexus Application Server Enterprise 07 50

  • Hitachi Ucosminexus Application Server Standard 7 50

  • Hitachi Ucosminexus Client 07 50

  • Hitachi Ucosminexus Developer Professional 07 50

  • Hitachi Ucosminexus Developer Standard 07 50

  • Hitachi Ucosminexus Operator 07 50

  • Hitachi Ucosminexus Service Architect 7 50

  • Hitachi Ucosminexus Service Platform 7 50


References

VUPEN - ADV-2007-3375

CONFIRM - http://www.hitachi-support.com/security_e/vuls_e/HS07-031_e/index-e.html

SECUNIA - 27075

XF - hitachi-cosminexus-jsse-dos(36965)

BID - 25935


Last Updated: 27 May 2016 10:46:08