Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-1040

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-1040
Last Modified 07 Mar 2011 10:05:50
Published 27 Feb 2008 02:44:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-1040

Summary

Buffer overflow in the Single Sign-On function in Fujitsu Interstage Application Server 8.0.0 through 8.0.3 and 9.0.0, Interstage Studio 8.0.1 and 9.0.0, and Interstage Apworks 8.0.0 allows remote attackers to execute arbitrary code via a long URI.

Vulnerable Systems

Application

  • Fujitsu Interstage Application Server Enterprise 8.0.0

  • Fujitsu Interstage Application Server Enterprise 8.0.1

  • Fujitsu Interstage Application Server Enterprise 8.0.2

  • Fujitsu Interstage Application Server Enterprise 8.0.3

  • Fujitsu Interstage Application Server Enterprise V9.0.0

  • Fujitsu Interstage Application Server Enterprise V9.0.0a

  • Fujitsu Interstage Application Server Standard J 8.0.0

  • Fujitsu Interstage Application Server Standard J 8.0.2

  • Fujitsu Interstage Application Server Standard J 8.0.3

  • Fujitsu Interstage Application Server Standard J V9.0.0.0

  • Fujitsu Interstage Application Server Standard J V9.0.0a

  • Fujitsu Interstage Apworks Enterprise 8.0.0

  • Fujitsu Interstage Apworks Standard J 8.0.0

  • Fujitsu Interstage Studio Enterprise 8.0.1

  • Fujitsu Interstage Studio Enterprise V9.0.0

  • Fujitsu Interstage Studio Standard J 8.0.1

  • Fujitsu Interstage Studio Standard J V9.0.0


References

VUPEN - ADV-2008-0662

BID - 27966

CONFIRM - http://www.fujitsu.com/global/support/software/security/products-f/interstage-200804e.html

SECUNIA - 29088


Last Updated: 27 May 2016 10:47:01