CVE-2007-5366
Last modified
CVE-2007-5366 is a vulnerability of currently unknown severity. The Tomcat 4.1-based Servlet Service in Fujitsu Interstage Application Server 7.0 through 9.0.0 and Interstage Apworks/Studio 7.0 through 9.0.0 allows remote attackers to obtain sensitive information (web root path) via unspecified vectors that trigger an error message, probably related to enabling the useCanonCaches Java Virtual Machine (JVM) option.. EPSS estimates a 2.17% chance of exploitation in the next 30 days.
Description
The Tomcat 4.1-based Servlet Service in Fujitsu Interstage Application Server 7.0 through 9.0.0 and Interstage Apworks/Studio 7.0 through 9.0.0 allows remote attackers to obtain sensitive information (web root path) via unspecified vectors that trigger an error message, probably related to enabling the useCanonCaches Java Virtual Machine (JVM) option.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Fujitsu | Interstage Application Server | 7.0 |
| Fujitsu | Interstage Application Server | 7.0.1 |
| Fujitsu | Interstage Application Server | 8.0.0 |
| Fujitsu | Interstage Application Server | 8.0.1 |
| Fujitsu | Interstage Application Server | 8.0.2 |
| Fujitsu | Interstage Application Server | 8.0.3 |
| Fujitsu | Interstage Application Server | 9.0 |
| Fujitsu | Interstage Application Server | 9.0a |
| Fujitsu | Interstage Apworks | 7.0 |
| Fujitsu | Interstage Apworks | 8.0 |
| Fujitsu | Interstage Studio | 8.01 |
| Fujitsu | Interstage Studio | 9.0 |
References
- http://secunia.com/advisories/27136Vendor Advisory
- http://secunia.com/advisories/27136Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2007-5366?
How severe is CVE-2007-5366?
How do I fix CVE-2007-5366?
Are you affected by CVE-2007-5366?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST