1. CVE-Search
  2. CVE-2010-1942
ID CVE-2010-1942
Summary Unspecified vulnerability in the Servlet service in Fujitsu Limited Interstage Application Server 3.0 through 7.0, as used in Interstage Application Framework Suite, Interstage Business Application Server, and Interstage List Manager, allows attackers to obtain sensitive information or force invalid requests to be processed via unknown vectors related to unspecified invalid requests and settings on the load balancing device.
References
Vulnerable Configurations
  • cpe:2.3:a:fujitsu:interstage_application_server:3.0:*:enterprise:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server:3.0:*:enterprise:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server:3.0:*:standard:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server:3.0:*:standard:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server:4.0:*:enterprise:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server:4.0:*:enterprise:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server:4.0:*:standard:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server:4.0:*:standard:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server:4.0:*:web_j:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server:4.0:*:web_j:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server:4.1:*:standard:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server:4.1:*:standard:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server:4.1:*:web_j:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server:4.1:*:web_j:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server:5.0:*:enterprise:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server:5.0:*:enterprise:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server:5.0:*:standard:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server:5.0:*:standard:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server:5.0:*:web_j:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server:5.0:*:web_j:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server:5.0.1:*:enterprise:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server:5.0.1:*:enterprise:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server:5.0.1:*:plus_developer:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server:5.0.1:*:plus_developer:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server:6.0:*:enterprise:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server:6.0:*:enterprise:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server:6.0:*:plus:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server:6.0:*:plus:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server:7.0:*:enterprise:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server:7.0:*:enterprise:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server:7.0:*:plus:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server:7.0:*:plus:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server:7.0:*:standard:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server:7.0:*:standard:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server:7.0.1:*:enterprise:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server:7.0.1:*:enterprise:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server:7.0.1:*:plus:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server:7.0.1:*:plus:*:*:*:*:*
CVSS
Base: 6.4 (as of 17-08-2017 - 01:32)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL NONE
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:N
refmap via4
bid 40189
confirm
jvn JVN#90248889
jvndb JVNDB-2010-000018
osvdb 64703
secunia 39803
vupen ADV-2010-1165
xf interstage-servlet-information-disclosure(58634)
Last major update 17-08-2017 - 01:32
Published 19-05-2010 - 12:08
Last modified 17-08-2017 - 01:32
Back to Top