Refine your search
2 vulnerabilities found for Jasmine by FUJITSU
jvndb-2009-001135
Vulnerability from jvndb
Published
2009-04-17 14:13
Modified
2009-04-17 14:13
Summary
Fujitsu Jasmine HTTP Response Splitting Vulnerability When Executing WebLink Template
Details
A vulnerability exists in Fujitsu Jasmine where HTTP response splitting may be conducted when the WebLink template is executed.
References
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-001135.html",
"dc:date": "2009-04-17T14:13+09:00",
"dcterms:issued": "2009-04-17T14:13+09:00",
"dcterms:modified": "2009-04-17T14:13+09:00",
"description": "A vulnerability exists in Fujitsu Jasmine where HTTP response splitting may be conducted when the WebLink template is executed.",
"link": "https://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-001135.html",
"sec:cpe": {
"#text": "cpe:/a:fujitsu:jasmine",
"@product": "Jasmine",
"@vendor": "FUJITSU",
"@version": "2.2"
},
"sec:cvss": {
"@score": "6.8",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2009-001135",
"sec:references": [
{
"#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0868",
"@id": "CVE-2009-0868",
"@source": "CVE"
},
{
"#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0868",
"@id": "CVE-2009-0868",
"@source": "NVD"
},
{
"#text": "http://secunia.com/advisories/33971",
"@id": "SA33971",
"@source": "SECUNIA"
},
{
"#text": "http://www.securityfocus.com/bid/33832",
"@id": "33832",
"@source": "BID"
},
{
"#text": "http://xforce.iss.net/xforce/xfdb/48818",
"@id": "48818",
"@source": "XF"
},
{
"#text": "http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-001135.html",
"@id": "JVNDB-2009-001135",
"@source": "JVNDB_Ja"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-20",
"@title": "Improper Input Validation(CWE-20)"
}
],
"title": "Fujitsu Jasmine HTTP Response Splitting Vulnerability When Executing WebLink Template"
}
jvndb-2008-001647
Vulnerability from jvndb
Published
2008-09-18 11:48
Modified
2009-03-30 14:29
Summary
Jasmine WebLink Template Multiple Vulnerabilities
Details
Jasmin WebLink is vulnerable to buffer overflow (BOF), denial of service
(DoS) and cross-site scripting (XSS) when executing templates.
References
| Type | URL | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2008/JVNDB-2008-001647.html",
"dc:date": "2009-03-30T14:29+09:00",
"dcterms:issued": "2008-09-18T11:48+09:00",
"dcterms:modified": "2009-03-30T14:29+09:00",
"description": "Jasmin WebLink is vulnerable to buffer overflow (BOF), denial of service\r\n(DoS) and cross-site scripting (XSS) when executing templates.",
"link": "https://jvndb.jvn.jp/en/contents/2008/JVNDB-2008-001647.html",
"sec:cpe": {
"#text": "cpe:/a:fujitsu:jasmine",
"@product": "Jasmine",
"@vendor": "FUJITSU",
"@version": "2.2"
},
"sec:cvss": {
"@score": "7.5",
"@severity": "High",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2008-001647",
"sec:references": [
{
"#text": "http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-001647.html",
"@id": "JVNDB-2008-001647",
"@source": "JVNDB_Ja"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-119",
"@title": "Buffer Errors(CWE-119)"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-79",
"@title": "Cross-site Scripting(CWE-79)"
}
],
"title": "Jasmine WebLink Template Multiple Vulnerabilities"
}