Vulnerability-Lookup

CVE-2007-3794 (GCVE-0-2007-3794)

Vulnerability from cvelistv5 – Published: 2007-07-16 03:00 – Updated: 2024-08-07 14:28

Summary

Buffer overflow in Hitachi Cosminexus V4 through V7, Processing Kit for XML before 20070511, Developer's Kit for Java before 20070312, and third-party products that use this software, allows attackers to have an unknown impact via certain GIF images, related to use of GIF image processing APIs by a Java application.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

FKIE_CVE-2007-3794

Vulnerability from fkie_nvd - Published: 2007-07-15 23:30 - Updated: 2025-04-09 00:30

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://osvdb.org/37851
cve@mitre.org	http://secunia.com/advisories/26025	Vendor Advisory
cve@mitre.org	http://www.hitachi-support.com/security_e/vuls_e/HS07-018_e/index-e.html
cve@mitre.org	http://www.securityfocus.com/bid/24905
cve@mitre.org	http://www.vupen.com/english/advisories/2007/2534
af854a3a-2127-422b-91ae-364da2661108	http://osvdb.org/37851
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/26025	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.hitachi-support.com/security_e/vuls_e/HS07-018_e/index-e.html
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/24905
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2007/2534

Impacted products

Vendor	Product	Version
microsoft	windows	*
hitachi	cosminexus_application_server	05_00_05_00_h
hitachi	cosminexus_application_server	05_01_05_01_k
hitachi	cosminexus_application_server	05_05_05_00_o
hitachi	cosminexus_application_server	06_00_06_00_g
hitachi	cosminexus_application_server	06_00_06_00_g
hitachi	cosminexus_application_server	06_02_06_02_f
hitachi	cosminexus_application_server	06_02_06_02_f
hitachi	cosminexus_application_server	06_50_06_50_e
hitachi	cosminexus_application_server	06_50_06_50_e
hitachi	cosminexus_application_server	06_51_06_51_g
hitachi	cosminexus_application_server	06_51_06_51_g
hitachi	cosminexus_client	06_00_06_00_g
hitachi	cosminexus_client	06_02_06_02_f
hitachi	cosminexus_client	06_50_06_50_e
hitachi	cosminexus_client	06_51_06_51_g
hitachi	cosminexus_developer	05_00_05_00_h
hitachi	cosminexus_developer	05_01_05_01_k
hitachi	cosminexus_developer	05_05_05_05_o
hitachi	cosminexus_developer	06_00_06_00_g
hitachi	cosminexus_developer	06_00_06_00_g
hitachi	cosminexus_developer	06_00_06_00_g
hitachi	cosminexus_developer	06_02_06_02_f
hitachi	cosminexus_developer	06_02_06_02_f
hitachi	cosminexus_developer	06_02_06_02_f
hitachi	cosminexus_developer	06_50_06_50_e
hitachi	cosminexus_developer	06_50_06_50_e
hitachi	cosminexus_developer	06_50_06_50_e
hitachi	cosminexus_developer	06_51_06_51_g
hitachi	cosminexus_developer	06_51_06_51_g
hitachi	cosminexus_developer	06_51_06_51_g
hitachi	cosminexus_server	04_00_04_00_a
hitachi	cosminexus_server	04_00_04_00_a
hitachi	cosminexus_server	04_01_04_01_a
hitachi	cosminexus_server	04_01_04_01_a
hitachi	cosminexus_studio	04_00_04_00_a
hitachi	cosminexus_studio	04_00_04_00_a
hitachi	cosminexus_studio	04_01_04_01_a
hitachi	cosminexus_studio	04_01_04_01_a
hitachi	cosminexus_studio	05_05_05_05_o
microsoft	windows	*
hitachi	ucosminexus_application_server	06_70_06_70_a
hitachi	ucosminexus_application_server	06_70_06_70_a
hitachi	ucosminexus_application_server	06_70_06_70_b
hitachi	ucosminexus_application_server	06_70_06_70_b
hitachi	ucosminexus_application_server	06_71_06_71_b
hitachi	ucosminexus_application_server	06_71_06_71_b
hitachi	ucosminexus_application_server	07_00_07_20
hitachi	ucosminexus_application_server	07_00_07_20
hitachi	ucosminexus_client	06_70_06_70_b
hitachi	ucosminexus_client	06_71_06_71_b
hitachi	ucosminexus_client	07_00_07_20
hitachi	ucosminexus_developer	06_70_06_70_b
hitachi	ucosminexus_developer	06_70_06_70_b
hitachi	ucosminexus_developer	06_70_06_70_b
hitachi	ucosminexus_developer	06_71_06_71_b
hitachi	ucosminexus_developer	06_71_06_71_b
hitachi	ucosminexus_developer	06_71_06_71_b
hitachi	ucosminexus_operator	07_00_07_20
hitachi	ucosminexus_service_architect	07_00_07_20
hitachi	ucosminexus_service_platform	07_00_07_20
linux	linux_kernel	*
hitachi	cosminexus_application_server	05_05_05_05_h
hitachi	cosminexus_application_server	06_00_06_00_b
hitachi	cosminexus_application_server	06_00_06_00_b
hitachi	cosminexus_application_server	06_00_06_00_d
hitachi	cosminexus_application_server	06_02_06_02_f
hitachi	cosminexus_application_server	06_02_06_02_f
hitachi	cosminexus_application_server	06_02_06_02_f
hitachi	cosminexus_application_server	06_50_06_50_b
hitachi	cosminexus_application_server	06_50_06_50_b
hitachi	cosminexus_application_server	06_50_06_50_c
hitachi	cosminexus_application_server	06_51_06_51_b
hitachi	cosminexus_application_server	06_51_06_51_b
hitachi	cosminexus_application_server	06_51_06_51_b
hitachi	cosminexus_application_server	06_51_06_51_c
hitachi	ucosminexus_application_server	06_70_06_70_b
hitachi	ucosminexus_application_server	06_70_06_70_b
hitachi	ucosminexus_application_server	06_71_06_71_b
hitachi	ucosminexus_application_server	06_71_06_71_b
hitachi	ucosminexus_application_server	07_00_07_10
hitachi	ucosminexus_application_server	07_00_07_10
hitachi	ucosminexus_service_platform	07_00_07_10
hp	hp-ux	*
hitachi	cosminexus_application_server	05_02_05_02_e
hitachi	cosminexus_application_server	05_05_05_05_h
hitachi	cosminexus_application_server	06_00_06_00_d
hitachi	cosminexus_application_server	06_00_06_00_d
hitachi	cosminexus_application_server	06_00_06_00_e
hitachi	cosminexus_application_server	06_00_06_00_e
hitachi	cosminexus_application_server	06_50_06_50_d
hitachi	cosminexus_application_server	06_50_06_50_d
hitachi	cosminexus_application_server	06_50_06_50_e
hitachi	cosminexus_application_server	06_50_06_50_e
hitachi	ucosminexus_application_server	06_70_06_70_b
hitachi	ucosminexus_application_server	06_70_06_70_b
hitachi	ucosminexus_application_server	06_70_06_70_h
hitachi	ucosminexus_application_server	06_70_06_70_h
hitachi	ucosminexus_application_server	06_70_06_72
hitachi	ucosminexus_application_server	06_70_06_72
hitachi	ucosminexus_application_server	07_00_07_10
hitachi	ucosminexus_application_server	07_00_07_10
hitachi	ucosminexus_application_server	07_10
hitachi	ucosminexus_application_server	07_10
ibm	aix	*
hitachi	cosminexus_application_server	05_00_05_00_r
hitachi	cosminexus_application_server	05_05_05_05_l
hitachi	cosminexus_application_server	06_00_06_00_g
hitachi	cosminexus_application_server	06_00_06_00_g
hitachi	cosminexus_application_server	06_50_06_50_f
hitachi	cosminexus_application_server	06_50_06_50_f
hitachi	ucosminexus_application_server	06_70_06_70_d
hitachi	ucosminexus_application_server	06_70_06_70_d
hitachi	ucosminexus_application_server	07_00_07_10
hitachi	ucosminexus_application_server	07_00_07_10
hitachi	ucosminexus_service_platform	07_10
sun	solaris	*
hitachi	cosminexus_application_server	06_00_06_00_a
hitachi	cosminexus_application_server	06_00_06_00_a
hitachi	cosminexus_application_server	06_50_06_50_c
hitachi	cosminexus_application_server	06_50_06_50_c
hitachi	ucosminexus_application_server	06_70_06_70_c
hitachi	ucosminexus_application_server	06_70_06_70_c
hitachi	ucosminexus_application_server	07_00
hitachi	ucosminexus_application_server	07_00

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:05_00_05_00_h:*:*:*:*:*:*:*",
              "matchCriteriaId": "08E9C3D3-D944-4F41-BF21-5DF582C43903",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:05_01_05_01_k:*:*:*:*:*:*:*",
              "matchCriteriaId": "6C1CDB78-76C1-4D80-A183-7483FFA13A75",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:05_05_05_00_o:*:*:*:*:*:*:*",
              "matchCriteriaId": "80BE1B02-B165-42B6-9919-009B76C39B29",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_g:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "2674A983-8739-4DBE-96ED-47677B8D2ADC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_g:*:standard:*:*:*:*:*",
              "matchCriteriaId": "09A7C038-6DAE-4E96-817B-E53E922ECF2E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_02_06_02_f:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "27C646E2-4008-4127-BA03-81B3F47778A1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_02_06_02_f:*:standard:*:*:*:*:*",
              "matchCriteriaId": "B048E417-AEFB-4E79-8D87-CA4DA9A9F6B4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_e:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "9945A107-702F-408F-8E44-516C24726406",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_e:*:standard:*:*:*:*:*",
              "matchCriteriaId": "02860F28-17E4-4367-A8DF-B132792E2B48",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_51_06_51_g:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "32FF7671-F1EA-4BCA-8AA2-B833FC0E071D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_51_06_51_g:*:standard:*:*:*:*:*",
              "matchCriteriaId": "28BFFA3A-2EAA-46D4-8F4A-9F665705764A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_client:06_00_06_00_g:*:*:*:*:*:*:*",
              "matchCriteriaId": "77F279FF-A73E-4DE4-BE75-DFB3304BE1EC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_client:06_02_06_02_f:*:*:*:*:*:*:*",
              "matchCriteriaId": "FCA5094D-3C95-4518-BC90-30C44DFF40F1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_client:06_50_06_50_e:*:*:*:*:*:*:*",
              "matchCriteriaId": "0A0E88A1-AEB5-48B3-82F9-A106A50D45BD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_client:06_51_06_51_g:*:*:*:*:*:*:*",
              "matchCriteriaId": "8E4B523C-BB7B-4538-8EC0-9906AC3DE97F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_developer:05_00_05_00_h:*:*:*:*:*:*:*",
              "matchCriteriaId": "8FC69169-E960-46F4-BDFD-2042E01C1431",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_developer:05_01_05_01_k:*:*:*:*:*:*:*",
              "matchCriteriaId": "64B60CE2-287E-412C-8AF9-8BA26BC797A5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_developer:05_05_05_05_o:*:*:*:*:*:*:*",
              "matchCriteriaId": "F91CA5B9-A742-40C0-BF61-13BDA523436F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_developer:06_00_06_00_g:*:light:*:*:*:*:*",
              "matchCriteriaId": "546E37F4-CDFF-4970-927D-833CA154ED7D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_developer:06_00_06_00_g:*:professional:*:*:*:*:*",
              "matchCriteriaId": "5D74159A-B4C0-40EA-8D4B-B507355F18D0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_developer:06_00_06_00_g:*:standard:*:*:*:*:*",
              "matchCriteriaId": "FDF60BE0-7647-4032-81B4-0BB0EF96E064",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_developer:06_02_06_02_f:*:light:*:*:*:*:*",
              "matchCriteriaId": "9D937EA6-6D11-4B81-8F6E-F72A88A11443",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_developer:06_02_06_02_f:*:professional:*:*:*:*:*",
              "matchCriteriaId": "A67EA6AA-91D2-48EE-AED7-62167F3975BB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_developer:06_02_06_02_f:*:standard:*:*:*:*:*",
              "matchCriteriaId": "54354B06-1E65-4944-9480-61CCBC530F26",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_developer:06_50_06_50_e:*:light:*:*:*:*:*",
              "matchCriteriaId": "5A5AFF05-C190-416D-9095-9ECE2267108C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_developer:06_50_06_50_e:*:professional:*:*:*:*:*",
              "matchCriteriaId": "25D885D6-A31E-4A9D-8872-3E390492E64A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_developer:06_50_06_50_e:*:standard:*:*:*:*:*",
              "matchCriteriaId": "55E9DFAA-19EC-4997-A63B-ADDD6A7DD20F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_developer:06_51_06_51_g:*:light:*:*:*:*:*",
              "matchCriteriaId": "10EFBF89-DEE8-4502-A337-86440FF5C956",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_developer:06_51_06_51_g:*:professional:*:*:*:*:*",
              "matchCriteriaId": "7A0ABB33-3669-4864-881F-BD8CE9F8FFE8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_developer:06_51_06_51_g:*:standard:*:*:*:*:*",
              "matchCriteriaId": "460D3F3F-6154-400C-BD5C-0D6B86F8497C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_server:04_00_04_00_a:*:standard:*:*:*:*:*",
              "matchCriteriaId": "C365F160-0EEA-4030-97B5-A42206B43ADC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_server:04_00_04_00_a:*:web:*:*:*:*:*",
              "matchCriteriaId": "49CB5AA6-0C3C-4D08-B7C3-D322C081F400",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_server:04_01_04_01_a:*:standard:*:*:*:*:*",
              "matchCriteriaId": "3434F1CB-6A3E-463C-B22C-6235102E8633",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_server:04_01_04_01_a:*:web:*:*:*:*:*",
              "matchCriteriaId": "D85D9080-0E13-4F5D-A3EA-DC6FBBF33C41",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_studio:04_00_04_00_a:*:standard:*:*:*:*:*",
              "matchCriteriaId": "04B32AEB-BC9D-4E57-9470-B2B56A17E7A0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_studio:04_00_04_00_a:*:web:*:*:*:*:*",
              "matchCriteriaId": "F168FDE7-FB4D-4CC1-986D-F40258E791BC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_studio:04_01_04_01_a:*:standard:*:*:*:*:*",
              "matchCriteriaId": "3C945B77-56CB-4B70-B661-2001DC72A51E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_studio:04_01_04_01_a:*:web:*:*:*:*:*",
              "matchCriteriaId": "3487C33D-B2D1-4A9C-B3C0-6467E6DD9383",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_studio:05_05_05_05_o:*:*:*:*:*:*:*",
              "matchCriteriaId": "C211C0B8-452E-49E5-AF96-641D86751020",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_a:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "F3594EB6-0789-4DD9-93A6-F7CB6F9E525D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_a:*:standard:*:*:*:*:*",
              "matchCriteriaId": "98F739B5-882B-45C2-9274-3BF1EB00B091",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_b:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "AE1C0314-2A44-4B05-9AF5-19B62198A624",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_b:*:standard:*:*:*:*:*",
              "matchCriteriaId": "1BE6CD20-5E43-4FB3-AEC6-BC2302BA0715",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_71_06_71_b:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "820349E6-7C6F-4822-BCEE-694E65DA6352",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_71_06_71_b:*:standard:*:*:*:*:*",
              "matchCriteriaId": "D9EE0379-D21E-498C-AE58-57DB5ED6214A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:07_00_07_20:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "0E8A70D0-E113-44FD-99C9-AD7960EF5AF3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:07_00_07_20:*:standard:*:*:*:*:*",
              "matchCriteriaId": "4E871F4C-4720-46F3-B326-494755D61A1E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_client:06_70_06_70_b:*:*:*:*:*:*:*",
              "matchCriteriaId": "137EE7B2-CD0F-45E1-90BD-BDD56E32C810",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_client:06_71_06_71_b:*:*:*:*:*:*:*",
              "matchCriteriaId": "FF0D4534-0C58-4AB5-B4F5-BE4077E3B569",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_client:07_00_07_20:*:*:*:*:*:*:*",
              "matchCriteriaId": "7AE89A9A-0ED4-4D59-B38A-D61C69A391E1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_developer:06_70_06_70_b:*:light:*:*:*:*:*",
              "matchCriteriaId": "8D01A20B-0EAE-46F8-8DB8-2F206062858B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_developer:06_70_06_70_b:*:professional:*:*:*:*:*",
              "matchCriteriaId": "472AABC0-2EFF-408B-B8E1-62AE64E88852",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_developer:06_70_06_70_b:*:standard:*:*:*:*:*",
              "matchCriteriaId": "E4D4604F-F5D7-4F50-997E-3A4CAE8C5217",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_developer:06_71_06_71_b:*:light:*:*:*:*:*",
              "matchCriteriaId": "BA59A43B-8EF0-459E-A920-327373771869",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_developer:06_71_06_71_b:*:professional:*:*:*:*:*",
              "matchCriteriaId": "FA40F08E-0AB7-4235-A79C-7C21756BB718",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_developer:06_71_06_71_b:*:standard:*:*:*:*:*",
              "matchCriteriaId": "1AAF93B0-88EA-48E0-81DF-24EBBD2AC4EA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_operator:07_00_07_20:*:*:*:*:*:*:*",
              "matchCriteriaId": "8ACE2D6C-AF0A-4DE0-819C-2E07478C19E6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_service_architect:07_00_07_20:*:*:*:*:*:*:*",
              "matchCriteriaId": "95A20EFB-85F6-41E6-A603-73FE33942FD3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_service_platform:07_00_07_20:*:*:*:*:*:*:*",
              "matchCriteriaId": "A5AA056B-5F4C-4161-8074-CA2E3FF80685",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "155AD4FB-E527-4103-BCEF-801B653DEA37",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:05_05_05_05_h:*:*:*:*:*:*:*",
              "matchCriteriaId": "40658C3F-AE0F-45E2-92D6-BF082E9D66FB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_b:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "A1B231A4-19B2-421F-BBBB-8CD053E23AC5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_b:*:standard:*:*:*:*:*",
              "matchCriteriaId": "62928248-B1B8-43AA-B552-9DDBDD5B618C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_d:*:*:*:*:*:*:*",
              "matchCriteriaId": "49AFA829-1926-4521-B545-5F91E0C0D298",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_02_06_02_f:*:*:*:*:*:*:*",
              "matchCriteriaId": "1C1204B2-BCF5-4E51-8698-2858BE9405BF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_02_06_02_f:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "27C646E2-4008-4127-BA03-81B3F47778A1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_02_06_02_f:*:standard:*:*:*:*:*",
              "matchCriteriaId": "B048E417-AEFB-4E79-8D87-CA4DA9A9F6B4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_b:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "3D547CE8-4C45-42C6-9A67-93098D96CBC3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_b:*:standard:*:*:*:*:*",
              "matchCriteriaId": "5CFA3A0A-11A3-475B-AFD3-CD530D9D2588",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_c:*:*:*:*:*:*:*",
              "matchCriteriaId": "64EE0884-1FCF-44E3-9DFD-D111ACBC6570",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_51_06_51_b:*:*:*:*:*:*:*",
              "matchCriteriaId": "059233E9-DF7B-4239-BB7D-B99582493020",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_51_06_51_b:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "7E9AC5EE-0664-4AD4-9599-5378E42FC027",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_51_06_51_b:*:standard:*:*:*:*:*",
              "matchCriteriaId": "514E4C76-4B78-48B2-A216-69B429239B62",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_51_06_51_c:*:*:*:*:*:*:*",
              "matchCriteriaId": "4EC8984F-C604-4329-8240-05567D7B7AB4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_b:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "AE1C0314-2A44-4B05-9AF5-19B62198A624",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_b:*:standard:*:*:*:*:*",
              "matchCriteriaId": "1BE6CD20-5E43-4FB3-AEC6-BC2302BA0715",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_71_06_71_b:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "820349E6-7C6F-4822-BCEE-694E65DA6352",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_71_06_71_b:*:standard:*:*:*:*:*",
              "matchCriteriaId": "D9EE0379-D21E-498C-AE58-57DB5ED6214A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:07_00_07_10:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "A0C00BC6-CE13-418E-9713-97AD173AF0C0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:07_00_07_10:*:standard:*:*:*:*:*",
              "matchCriteriaId": "DFECEA35-4AE8-490D-9BD7-66A41E3D01F0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_service_platform:07_00_07_10:*:*:*:*:*:*:*",
              "matchCriteriaId": "515BB83C-588A-4BFC-A6C8-6CBF078E611A",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:hp:hp-ux:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "61A4F116-1FEE-450E-99AE-6AD9ACDDE570",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:05_02_05_02_e:*:*:*:*:*:*:*",
              "matchCriteriaId": "E3619039-6720-4285-9F75-9C011FE140C8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:05_05_05_05_h:*:*:*:*:*:*:*",
              "matchCriteriaId": "40658C3F-AE0F-45E2-92D6-BF082E9D66FB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_d:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "E4AE4BE6-AE25-4DDE-8CA5-A82AB22C3A15",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_d:*:standard:*:*:*:*:*",
              "matchCriteriaId": "811CA6A6-3211-4B69-8BF6-BAC2E74D7674",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_e:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "2C4AFE01-77F7-4149-AE38-29443A5567E1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_e:*:standard:*:*:*:*:*",
              "matchCriteriaId": "4CE80569-E6BF-4771-80A6-AA3825E44FA8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_d:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "F560E009-EF13-4E6D-BEB3-E630E37910C5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_d:*:standard:*:*:*:*:*",
              "matchCriteriaId": "F1840F50-85F6-4F36-AE16-94A69E718A57",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_e:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "9945A107-702F-408F-8E44-516C24726406",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_e:*:standard:*:*:*:*:*",
              "matchCriteriaId": "02860F28-17E4-4367-A8DF-B132792E2B48",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_b:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "AE1C0314-2A44-4B05-9AF5-19B62198A624",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_b:*:standard:*:*:*:*:*",
              "matchCriteriaId": "1BE6CD20-5E43-4FB3-AEC6-BC2302BA0715",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_h:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "58E30CE3-9B4F-42CC-B937-5950DD982B81",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_h:*:standard:*:*:*:*:*",
              "matchCriteriaId": "6343B479-A127-4819-9CA0-C4E6285151F9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_72:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "89F129C0-C5C2-4E8B-87B1-1B2127A1E7C8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_72:*:standard:*:*:*:*:*",
              "matchCriteriaId": "D5E5F2D1-2203-442F-AF4D-F0CCD097C909",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:07_00_07_10:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "A0C00BC6-CE13-418E-9713-97AD173AF0C0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:07_00_07_10:*:standard:*:*:*:*:*",
              "matchCriteriaId": "DFECEA35-4AE8-490D-9BD7-66A41E3D01F0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:07_10:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "2DEA86DA-5FBF-4887-B390-A19EF6762888",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:07_10:*:standard:*:*:*:*:*",
              "matchCriteriaId": "386462CA-6399-4654-9234-1967225E1F13",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:ibm:aix:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "F7F01A55-7C37-4BAF-A4D4-61E8AC54FF79",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:05_00_05_00_r:*:*:*:*:*:*:*",
              "matchCriteriaId": "D597E295-C82C-4BD6-8E64-3A9AB34BCD7B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:05_05_05_05_l:*:*:*:*:*:*:*",
              "matchCriteriaId": "EC38AC44-24F4-4FC7-97EC-26A90864CB47",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_g:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "2674A983-8739-4DBE-96ED-47677B8D2ADC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_g:*:standard:*:*:*:*:*",
              "matchCriteriaId": "09A7C038-6DAE-4E96-817B-E53E922ECF2E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_f:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "E7225C21-1608-41F6-86F9-A322923B63B8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_f:*:standard:*:*:*:*:*",
              "matchCriteriaId": "54C5D716-B1BD-41D7-AB1D-66BD1021B5AB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_d:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "62F8AE0B-D48B-49F2-BFAF-0AB917D86C23",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_d:*:standard:*:*:*:*:*",
              "matchCriteriaId": "8BA1AC51-20BB-4991-BF8F-38EF4987A731",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:07_00_07_10:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "A0C00BC6-CE13-418E-9713-97AD173AF0C0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:07_00_07_10:*:standard:*:*:*:*:*",
              "matchCriteriaId": "DFECEA35-4AE8-490D-9BD7-66A41E3D01F0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_service_platform:07_10:*:*:*:*:*:*:*",
              "matchCriteriaId": "962CA2D1-F896-449C-9E21-27F6664D45C7",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:sun:solaris:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "469B74F2-4B89-42B8-8638-731E92D463B9",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_a:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "2F041769-C4B3-4E68-A728-C7A6B74C2BB5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_a:*:standard:*:*:*:*:*",
              "matchCriteriaId": "7D4765BC-9A06-4644-A254-9CC7124B8C1C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_c:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "E4529373-2C7C-4946-84B4-91F5051C7C0C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_c:*:standard:*:*:*:*:*",
              "matchCriteriaId": "4EEF71A9-6F14-4CAD-A264-D0EE6F1CC041",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_c:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "2E29ADB4-8E77-44B7-8DAF-A6A056A58D8B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_c:*:standard:*:*:*:*:*",
              "matchCriteriaId": "938BC0D0-F52E-4979-990F-E1F7A02CFE41",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:07_00:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "3DF2787E-6311-486A-A118-C032D742CD41",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:hitachi:ucosminexus_application_server:07_00:*:standard:*:*:*:*:*",
              "matchCriteriaId": "BEBAE442-D1DB-4D66-BBAF-CA89A4DD43D4",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Buffer overflow in Hitachi Cosminexus V4 through V7, Processing Kit for XML before 20070511, Developer\u0027s Kit for Java before 20070312, and third-party products that use this software, allows attackers to have an unknown impact via certain GIF images, related to use of GIF image processing APIs by a Java application."
    },
    {
      "lang": "es",
      "value": "Desbordamiento de b\u00fafer en Hitachi Cosminexus V4 hasta V7, Processing Kit para XML versiones anteriores a 20070511, Developer\u0027s Kit para Java versiones anteriores a 20070312, y productos de terceras partes que utilizan este software, permite a atacantes remotos tener un impacto desconocido mediante im\u00e1genes GIF determinadas, relativas al uso de de APIs de procesamiento de im\u00e1genes GIF por una aplicaci\u00f3n JAVA."
    }
  ],
  "id": "CVE-2007-3794",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 10.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": true,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2007-07-15T23:30:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://osvdb.org/37851"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/26025"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.hitachi-support.com/security_e/vuls_e/HS07-018_e/index-e.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/24905"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2007/2534"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://osvdb.org/37851"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/26025"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.hitachi-support.com/security_e/vuls_e/HS07-018_e/index-e.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/24905"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2007/2534"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-9XH5-8JPH-VQV9

Vulnerability from github – Published: 2022-05-01 18:17 – Updated: 2022-05-01 18:17

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2007-3794"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2007-07-15T23:30:00Z",
    "severity": "HIGH"
  },
  "details": "Buffer overflow in Hitachi Cosminexus V4 through V7, Processing Kit for XML before 20070511, Developer\u0027s Kit for Java before 20070312, and third-party products that use this software, allows attackers to have an unknown impact via certain GIF images, related to use of GIF image processing APIs by a Java application.",
  "id": "GHSA-9xh5-8jph-vqv9",
  "modified": "2022-05-01T18:17:20Z",
  "published": "2022-05-01T18:17:20Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-3794"
    },
    {
      "type": "WEB",
      "url": "http://osvdb.org/37851"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/26025"
    },
    {
      "type": "WEB",
      "url": "http://www.hitachi-support.com/security_e/vuls_e/HS07-018_e/index-e.html"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/24905"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2007/2534"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

JVNDB-2007-000701

Vulnerability from jvndb - Published: 2008-05-21 00:00 - Updated:2008-05-21 00:00

Severity ?

N/A (UNKNOWN) - -

Summary

Cosminexus, Processing Kit for XML and Hitachi Developer's Kit for Java Buffer Overflow Vulnerabilities

Details

Cosminexus, Processing Kit for XML and Hitachi Developer's Kit for Java may suffer from buffer overflow when a Java application handles GIF images with the image-processing APIs.

References

Type

URL

	JVN	http://jvn.jp/cert/JVNTA07-022A/index.html
	JVNTR	http://jvn.jp/tr/TRTA07-022A/index.html
	CVE	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3794
	NVD	http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-3794
	CERT-SA	http://www.us-cert.gov/cas/alerts/SA07-022A.html
	CERT-TA	http://www.us-cert.gov/cas/techalerts/TA07-022A.html
	SECUNIA	http://secunia.com/advisories/26025
	BID	http://www.securityfocus.com/bid/24905
	XF	http://xforce.iss.net/xforce/xfdb/36022
	FRSIRT	http://www.frsirt.com/english/advisories/2007/2534

Impacted products

Vendor

Product

	Hitachi, Ltd	Cosminexus Application Server
	Hitachi, Ltd	Cosminexus Client
	Hitachi, Ltd	Cosminexus Collaboration
	Hitachi, Ltd	Cosminexus Developer
	Hitachi, Ltd	Cosminexus Developer's Kit for Java(TM)
	Hitachi, Ltd	Cosminexus ERP Integrator
	Hitachi, Ltd	Cosminexus/OpenTP1
	Hitachi, Ltd	Cosminexus Server
	Hitachi, Ltd	Cosminexus Studio
	Hitachi, Ltd	Electronic Form Workflow
	Hitachi, Ltd	Groupmax Collaboration
	Hitachi, Ltd	Hitachi Developer's Kit for Java
	Hitachi, Ltd	Processing Kit for XML
	Hitachi, Ltd	uCosminexus Application Server
	Hitachi, Ltd	uCosminexus Client
	Hitachi, Ltd	uCosminexus Collaboration
	Hitachi, Ltd	uCosminexus Developer
	Hitachi, Ltd	uCosminexus ERP Integrator
	Hitachi, Ltd	uCosminexus/OpenTP1
	Hitachi, Ltd	uCosminexus Operator
	Hitachi, Ltd	uCosminexus Service

Show details on JVN DB website

JSON

To clipboard

{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2007/JVNDB-2007-000701.html",
  "dc:date": "2008-05-21T00:00+09:00",
  "dcterms:issued": "2008-05-21T00:00+09:00",
  "dcterms:modified": "2008-05-21T00:00+09:00",
  "description": "Cosminexus, Processing Kit for XML and Hitachi Developer\u0027s Kit for Java may suffer from buffer overflow when a Java application handles GIF images with the image-processing APIs.",
  "link": "https://jvndb.jvn.jp/en/contents/2007/JVNDB-2007-000701.html",
  "sec:cpe": [
    {
      "#text": "cpe:/a:hitachi:cosminexus_application_server",
      "@product": "Cosminexus Application Server",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:cosminexus_client",
      "@product": "Cosminexus Client ",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:cosminexus_collaboration",
      "@product": "Cosminexus Collaboration",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:cosminexus_developer",
      "@product": "Cosminexus Developer",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:cosminexus_developers_kit_for_java",
      "@product": "Cosminexus Developer\u0027s Kit for Java(TM)",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:cosminexus_erp_integrator",
      "@product": "Cosminexus ERP Integrator",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:cosminexus_opentp1",
      "@product": "Cosminexus/OpenTP1",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:cosminexus_server",
      "@product": "Cosminexus Server",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:cosminexus_studio",
      "@product": "Cosminexus Studio",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:electronic_form_workflow",
      "@product": "Electronic Form Workflow",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:groupmax_collaboration",
      "@product": "Groupmax Collaboration",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:hitachi_developers_kit_for_java",
      "@product": "Hitachi Developer\u0027s Kit for Java",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:processing_kit_for_xml",
      "@product": "Processing Kit for XML",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:ucosminexus_application_server",
      "@product": "uCosminexus Application Server",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:ucosminexus_client",
      "@product": "uCosminexus Client",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:ucosminexus_collaboration",
      "@product": "uCosminexus Collaboration",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:ucosminexus_developer",
      "@product": "uCosminexus Developer",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:ucosminexus_erp_integrator",
      "@product": "uCosminexus ERP Integrator",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:ucosminexus_opentp1",
      "@product": "uCosminexus/OpenTP1 ",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:ucosminexus_operator",
      "@product": "uCosminexus Operator",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:ucosminexus_service",
      "@product": "uCosminexus Service",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    }
  ],
  "sec:cvss": {
    "@score": "7.5",
    "@severity": "High",
    "@type": "Base",
    "@vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
    "@version": "2.0"
  },
  "sec:identifier": "JVNDB-2007-000701",
  "sec:references": [
    {
      "#text": "http://jvn.jp/cert/JVNTA07-022A/index.html",
      "@id": "JVNTA07-022A",
      "@source": "JVN"
    },
    {
      "#text": "http://jvn.jp/tr/TRTA07-022A/index.html",
      "@id": "TRTA07-022A",
      "@source": "JVNTR"
    },
    {
      "#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3794",
      "@id": "CVE-2007-3794",
      "@source": "CVE"
    },
    {
      "#text": "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-3794",
      "@id": "CVE-2007-3794",
      "@source": "NVD"
    },
    {
      "#text": "http://www.us-cert.gov/cas/alerts/SA07-022A.html",
      "@id": "SA07-022A",
      "@source": "CERT-SA"
    },
    {
      "#text": "http://www.us-cert.gov/cas/techalerts/TA07-022A.html",
      "@id": "TA07-022A",
      "@source": "CERT-TA"
    },
    {
      "#text": "http://secunia.com/advisories/26025",
      "@id": "SA26025",
      "@source": "SECUNIA"
    },
    {
      "#text": "http://www.securityfocus.com/bid/24905",
      "@id": "24905",
      "@source": "BID"
    },
    {
      "#text": "http://xforce.iss.net/xforce/xfdb/36022",
      "@id": "36022",
      "@source": "XF"
    },
    {
      "#text": "http://www.frsirt.com/english/advisories/2007/2534",
      "@id": "FrSIRT/ADV-2007-2534",
      "@source": "FRSIRT"
    }
  ],
  "title": "Cosminexus, Processing Kit for XML and Hitachi Developer\u0027s Kit for Java Buffer Overflow Vulnerabilities"
}

GSD-2007-3794

Vulnerability from gsd - Updated: 2023-12-13 01:21

Details

Aliases

CVE-2007-3794

Aliases

CVE-2007-3794

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2007-3794",
    "description": "Buffer overflow in Hitachi Cosminexus V4 through V7, Processing Kit for XML before 20070511, Developer\u0027s Kit for Java before 20070312, and third-party products that use this software, allows attackers to have an unknown impact via certain GIF images, related to use of GIF image processing APIs by a Java application.",
    "id": "GSD-2007-3794"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2007-3794"
      ],
      "details": "Buffer overflow in Hitachi Cosminexus V4 through V7, Processing Kit for XML before 20070511, Developer\u0027s Kit for Java before 20070312, and third-party products that use this software, allows attackers to have an unknown impact via certain GIF images, related to use of GIF image processing APIs by a Java application.",
      "id": "GSD-2007-3794",
      "modified": "2023-12-13T01:21:42.036256Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2007-3794",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Buffer overflow in Hitachi Cosminexus V4 through V7, Processing Kit for XML before 20070511, Developer\u0027s Kit for Java before 20070312, and third-party products that use this software, allows attackers to have an unknown impact via certain GIF images, related to use of GIF image processing APIs by a Java application."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "ADV-2007-2534",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2007/2534"
          },
          {
            "name": "http://www.hitachi-support.com/security_e/vuls_e/HS07-018_e/index-e.html",
            "refsource": "CONFIRM",
            "url": "http://www.hitachi-support.com/security_e/vuls_e/HS07-018_e/index-e.html"
          },
          {
            "name": "26025",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/26025"
          },
          {
            "name": "37851",
            "refsource": "OSVDB",
            "url": "http://osvdb.org/37851"
          },
          {
            "name": "24905",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/24905"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:05_00_05_00_h:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_e:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_e:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_developer:05_00_05_00_h:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_developer:05_01_05_01_k:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_developer:06_50_06_50_e:*:light:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_developer:06_50_06_50_e:*:professional:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_server:04_01_04_01_a:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_server:04_01_04_01_a:*:web:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:05_01_05_01_k:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:05_05_05_00_o:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_51_06_51_g:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_51_06_51_g:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_developer:05_05_05_05_o:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_developer:06_00_06_00_g:*:light:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_developer:06_50_06_50_e:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_developer:06_51_06_51_g:*:light:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_studio:04_00_04_00_a:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_studio:04_00_04_00_a:*:web:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_02_06_02_f:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_02_06_02_f:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_client:06_50_06_50_e:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_client:06_51_06_51_g:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_developer:06_02_06_02_f:*:professional:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_developer:06_02_06_02_f:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_server:04_00_04_00_a:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_server:04_00_04_00_a:*:web:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_studio:05_05_05_05_o:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_g:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_g:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_client:06_00_06_00_g:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_client:06_02_06_02_f:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_developer:06_00_06_00_g:*:professional:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_developer:06_00_06_00_g:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_developer:06_02_06_02_f:*:light:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_developer:06_51_06_51_g:*:professional:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_developer:06_51_06_51_g:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_studio:04_01_04_01_a:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_studio:04_01_04_01_a:*:web:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:07_00_07_20:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:07_00_07_20:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_developer:06_71_06_71_b:*:light:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_developer:06_71_06_71_b:*:professional:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_a:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_client:06_70_06_70_b:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_client:06_71_06_71_b:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_developer:06_71_06_71_b:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_operator:07_00_07_20:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_71_06_71_b:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_71_06_71_b:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_developer:06_70_06_70_b:*:professional:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_developer:06_70_06_70_b:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_a:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_b:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_b:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_client:07_00_07_20:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_developer:06_70_06_70_b:*:light:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_service_architect:07_00_07_20:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_service_platform:07_00_07_20:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_b:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_b:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_b:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:05_05_05_05_h:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_b:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_b:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_c:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_51_06_51_b:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_71_06_71_b:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:07_00_07_10:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_02_06_02_f:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_02_06_02_f:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_51_06_51_c:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_b:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_71_06_71_b:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_d:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_02_06_02_f:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_51_06_51_b:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_51_06_51_b:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:07_00_07_10:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_service_platform:07_00_07_10:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:hp:hp-ux:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:05_05_05_05_h:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_d:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_e:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_b:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:07_00_07_10:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:07_10:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_e:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_d:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:05_02_05_02_e:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_d:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_e:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_72:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:07_00_07_10:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_h:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_72:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_d:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_e:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_b:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_h:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:07_10:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:ibm:aix:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_g:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_g:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_service_platform:07_10:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:05_00_05_00_r:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:05_05_05_05_l:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:07_00_07_10:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:07_00_07_10:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_d:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_d:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_f:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_f:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:sun:solaris:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_c:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_c:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_a:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_50_06_50_c:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:cosminexus_application_server:06_00_06_00_a:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:07_00:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:06_70_06_70_c:*:standard:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:hitachi:ucosminexus_application_server:07_00:*:enterprise:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-3794"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Buffer overflow in Hitachi Cosminexus V4 through V7, Processing Kit for XML before 20070511, Developer\u0027s Kit for Java before 20070312, and third-party products that use this software, allows attackers to have an unknown impact via certain GIF images, related to use of GIF image processing APIs by a Java application."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.hitachi-support.com/security_e/vuls_e/HS07-018_e/index-e.html",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://www.hitachi-support.com/security_e/vuls_e/HS07-018_e/index-e.html"
            },
            {
              "name": "24905",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/24905"
            },
            {
              "name": "26025",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/26025"
            },
            {
              "name": "37851",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://osvdb.org/37851"
            },
            {
              "name": "ADV-2007-2534",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2007/2534"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 10.0,
          "obtainAllPrivilege": true,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2011-03-08T02:57Z",
      "publishedDate": "2007-07-15T23:30Z"
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2007-3794 (GCVE-0-2007-3794)

FKIE_CVE-2007-3794

GHSA-9XH5-8JPH-VQV9

JVNDB-2007-000701

GSD-2007-3794

Tags

Sightings

Nomenclature