Hitachi » Cosminexus Server : Security Vulnerabilities, CVEs, Published In 2007
Hitachi Web Server 01-00 through 03-00-01, as used by certain Cosminexus products, does not properly validate SSL client certificates, which might allow remote attackers to spoof authentication via a client certificate with a forged signature.
Max CVSS
5.0
EPSS Score
0.47%
Published
2007-11-05
Updated
2011-03-08
Cross-site scripting (XSS) vulnerability in Hitachi Web Server 01-00 through 03-10, as used by certain Cosminexus products, allows remote attackers to inject arbitrary web script or HTML via unspecified HTTP requests that trigger creation of a server-status page.
Max CVSS
4.3
EPSS Score
0.26%
Published
2007-11-05
Updated
2011-03-08
Buffer overflow in Hitachi Cosminexus V4 through V7, Processing Kit for XML before 20070511, Developer's Kit for Java before 20070312, and third-party products that use this software, allows attackers to have an unknown impact via certain GIF images, related to use of GIF image processing APIs by a Java application.
Max CVSS
10.0
EPSS Score
0.51%
Published
2007-07-15
Updated
2011-03-08
3 vulnerabilities found