1. CVE-Search
  2. CVE-2008-2674
ID CVE-2008-2674
Summary Unspecified vulnerability in the Interstage Management Console, as used in Fujitsu Interstage Application Server 6.0 through 9.0.0A, Apworks Modelers-J 6.0 through 7.0, and Studio 8.0.1 and 9.0.0, allows remote attackers to read or delete arbitrary files via unspecified vectors.
References
Vulnerable Configurations
  • cpe:2.3:o:redhat:enterprise_linux:as_3:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux:as_3:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux:es_3:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux:es_3:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server_enterprise:v6.0:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server_enterprise:v6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server_enterprise:v7.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server_enterprise:v7.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server_plus:v7.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server_plus:v7.0.0:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux:as_4:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux:as_4:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server_enterprise:v7.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server_enterprise:v7.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server_plus:v7.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server_plus:v7.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server_enterprise:8.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server_enterprise:8.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server_enterprise:8.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server_enterprise:8.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server_standard_j:8.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server_standard_j:8.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server_standard_j:8.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server_standard_j:8.0.2:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server_enterprise:v9.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server_enterprise:v9.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server_standard_j:v9.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server_standard_j:v9.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server_enterprise:8.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server_enterprise:8.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server_enterprise:v7.0:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server_enterprise:v7.0:*:*:*:*:*:*:*
  • cpe:2.3:o:sun:solaris:*:*:*:*:*:*:*:*
    cpe:2.3:o:sun:solaris:*:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server_enterprise:6.0:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server_enterprise:6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server_enterprise:7.0:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server_enterprise:7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server_enterprise:7.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server_enterprise:7.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server_enterprise:9.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server_enterprise:9.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server_plus:7.0:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server_plus:7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server_plus:7.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server_plus:7.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server_standard_j:9.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server_standard_j:9.0.0:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_nt:*:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_nt:*:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server_enterprise:v9.0.0a:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server_enterprise:v9.0.0a:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server_plus:v6.0:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server_plus:v6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server_plus:v7.0:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server_plus:v7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server_plus_developer:v6.0:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server_plus_developer:v6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server_plus_developer:v7.0:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server_plus_developer:v7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_application_server_standard_j:v9.0.0a:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_application_server_standard_j:v9.0.0a:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_apworks_modelers_j:v6.0:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_apworks_modelers_j:v6.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_apworks_modelers_j:v6.0a:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_apworks_modelers_j:v6.0a:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_apworks_modelers_j:v7.0:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_apworks_modelers_j:v7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_studio_enterprise:8.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_studio_enterprise:8.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_studio_enterprise:v9.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_studio_enterprise:v9.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_studio_standard_j:8.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_studio_standard_j:8.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_studio_standard_j:v9.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_studio_standard_j:v9.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:fujitsu:interstage_business_application_server_enterprise:v8.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:fujitsu:interstage_business_application_server_enterprise:v8.0.0:*:*:*:*:*:*:*
CVSS
Base: 6.4 (as of 08-08-2017 - 01:31)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL NONE
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:N
refmap via4
bid 29624
confirm http://www.fujitsu.com/global/support/software/security/products-f/interstage-200805e.html
sectrack 1020235
secunia 30589
vupen ADV-2008-1771
xf fujitsu-console-unspecified-security-bypass(42949)
Last major update 08-08-2017 - 01:31
Published 12-06-2008 - 12:21
Last modified 08-08-2017 - 01:31
Back to Top