CVE-2007-5282 - OpenCVE

Hitachi Cosminexus Agent 03-00 through 03-05, and Cosminexus Library Standard and Web Edition 04-00 and 04-01, might allow remote attackers to cause a denial of service (agent process crash) via invalid data from clients other than Cosminexus Manager.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:M/Au:N/C:N/I:N/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Hitachi	Cosminexus Agent Cosminexus Library Standard Cosminexus Library Web

Configuration 1 [-]

OR	cpe:2.3:a:hitachi:cosminexus_agent:03_00:::::::*
	cpe:2.3:a:hitachi:cosminexus_agent:03_01:::::::*
	cpe:2.3:a:hitachi:cosminexus_agent:03_02:::::::*
	cpe:2.3:a:hitachi:cosminexus_agent:03_03:::::::*
	cpe:2.3:a:hitachi:cosminexus_agent:03_04:::::::*
	cpe:2.3:a:hitachi:cosminexus_agent:03_05:::::::*
	cpe:2.3:a:hitachi:cosminexus_library_standard:04_00:::::::*
	cpe:2.3:a:hitachi:cosminexus_library_standard:04_01:::::::*
	cpe:2.3:a:hitachi:cosminexus_library_web:04_00:::::::*
	cpe:2.3:a:hitachi:cosminexus_library_web:04_01:::::::*

No data.

References

Link	Providers
http://secunia.com/advisories/27074
http://www.hitachi-support.com/security_e/vuls_e/HS07-033_e/index-e.html
http://www.securityfocus.com/bid/25937
http://www.vupen.com/english/advisories/2007/3377
https://exchange.xforce.ibmcloud.com/vulnerabilities/36966

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-10-09T00:00:00

Updated: 2024-08-07T15:24:42.328Z

Reserved: 2007-10-08T00:00:00

Link: CVE-2007-5282

Vulnrichment

No data.

NVD

Status : Modified

Published: 2007-10-09T00:17:00.000

Modified: 2017-07-29T01:33:33.427

Link: CVE-2007-5282

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-10-05T00:00:00", "descriptions": [{"lang": "en", "value": "Hitachi Cosminexus Agent 03-00 through 03-05, and Cosminexus Library Standard and Web Edition 04-00 and 04-01, might allow remote attackers to cause a denial of service (agent process crash) via invalid data from clients other than Cosminexus Manager."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-28T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://www.hitachi-support.com/security_e/vuls_e/HS07-033_e/index-e.html"}, {"name": "cosminexus-agent-unspecified-dos(36966)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36966"}, {"name": "ADV-2007-3377", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/3377"}, {"name": "25937", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/25937"}, {"name": "27074", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/27074"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-5282", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Hitachi Cosminexus Agent 03-00 through 03-05, and Cosminexus Library Standard and Web Edition 04-00 and 04-01, might allow remote attackers to cause a denial of service (agent process crash) via invalid data from clients other than Cosminexus Manager."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://www.hitachi-support.com/security_e/vuls_e/HS07-033_e/index-e.html", "refsource": "CONFIRM", "url": "http://www.hitachi-support.com/security_e/vuls_e/HS07-033_e/index-e.html"}, {"name": "cosminexus-agent-unspecified-dos(36966)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36966"}, {"name": "ADV-2007-3377", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/3377"}, {"name": "25937", "refsource": "BID", "url": "http://www.securityfocus.com/bid/25937"}, {"name": "27074", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/27074"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T15:24:42.328Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.hitachi-support.com/security_e/vuls_e/HS07-033_e/index-e.html"}, {"name": "cosminexus-agent-unspecified-dos(36966)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36966"}, {"name": "ADV-2007-3377", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2007/3377"}, {"name": "25937", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/25937"}, {"name": "27074", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/27074"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-5282", "datePublished": "2007-10-09T00:00:00", "dateReserved": "2007-10-08T00:00:00", "dateUpdated": "2024-08-07T15:24:42.328Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:hitachi:cosminexus_agent:03_00:*:*:*:*:*:*:*", "matchCriteriaId": "ECB31017-2FF5-42E4-8F7D-51CADF658354", "vulnerable": true}, {"criteria": "cpe:2.3:a:hitachi:cosminexus_agent:03_01:*:*:*:*:*:*:*", "matchCriteriaId": "56531CA2-07C7-4544-B29C-D1464FD034F3", "vulnerable": true}, {"criteria": "cpe:2.3:a:hitachi:cosminexus_agent:03_02:*:*:*:*:*:*:*", "matchCriteriaId": "9B3691C7-0D0F-46EB-9DC4-34C163E28441", "vulnerable": true}, {"criteria": "cpe:2.3:a:hitachi:cosminexus_agent:03_03:*:*:*:*:*:*:*", "matchCriteriaId": "A1483813-B2CF-40F2-8728-D63202664D6B", "vulnerable": true}, {"criteria": "cpe:2.3:a:hitachi:cosminexus_agent:03_04:*:*:*:*:*:*:*", "matchCriteriaId": "32393C3C-FDDF-4009-B084-6CE26C52E184", "vulnerable": true}, {"criteria": "cpe:2.3:a:hitachi:cosminexus_agent:03_05:*:*:*:*:*:*:*", "matchCriteriaId": "6AF2BCDE-0BBC-4166-8954-33746908DFD6", "vulnerable": true}, {"criteria": "cpe:2.3:a:hitachi:cosminexus_library_standard:04_00:*:*:*:*:*:*:*", "matchCriteriaId": "111C1A43-C1E7-4E97-B96B-AC66ABA8E2A8", "vulnerable": true}, {"criteria": "cpe:2.3:a:hitachi:cosminexus_library_standard:04_01:*:*:*:*:*:*:*", "matchCriteriaId": "163D511F-063C-4ACB-8F5B-5728F561AC7D", "vulnerable": true}, {"criteria": "cpe:2.3:a:hitachi:cosminexus_library_web:04_00:*:*:*:*:*:*:*", "matchCriteriaId": "135C3B93-E9A7-439F-A53A-9FFA700B50FF", "vulnerable": true}, {"criteria": "cpe:2.3:a:hitachi:cosminexus_library_web:04_01:*:*:*:*:*:*:*", "matchCriteriaId": "41165BEE-9618-4BD2-9EB4-0C86717A39C7", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Hitachi Cosminexus Agent 03-00 through 03-05, and Cosminexus Library Standard and Web Edition 04-00 and 04-01, might allow remote attackers to cause a denial of service (agent process crash) via invalid data from clients other than Cosminexus Manager."}, {"lang": "es", "value": "Hitachi Cosminexus Agent 03-00 hasta 03-05, y Cosminexus Library Standard y Web Edition 04-00 y 04-01, podr\u00eda permitir a atacantes remotos provocar una denegaci\u00f3n de servicio (ca\u00edda del proceso agente) mediante informaci\u00f3n inv\u00e1lida de otros clientes que no son Cosminexus Manager."}], "id": "CVE-2007-5282", "lastModified": "2017-07-29T01:33:33.427", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-10-09T00:17:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/27074"}, {"source": "cve@mitre.org", "url": "http://www.hitachi-support.com/security_e/vuls_e/HS07-033_e/index-e.html"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/25937"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2007/3377"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36966"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "nvd@nist.gov", "type": "Primary"}]}