Lucene search

MitreCVE-2007-3011

HistoryJul 05, 2007 - 7:30 p.m.

CVE-2007-3011

2007-07-0519:30:00

mitre

web.nvd.nist.gov

fujitsu-siemens

serverview

dbasciiaccess

cgi script

remote command execution

cve-2007-3011

security vulnerability

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.5

Confidence

Low

EPSS

0.027

Percentile

90.6%

JSON

The DBAsciiAccess CGI Script in the web interface in Fujitsu-Siemens Computers ServerView before 4.50.09 allows remote attackers to execute arbitrary commands via shell metacharacters in the Servername subparameter of the ParameterList parameter.

Affected configurations

Nvd

Node

fujitsuserverviewMatch2.50

fujitsuserverviewMatch3.60l98

fujitsuserverviewMatch3.60l99

fujitsuserverviewMatch4.10l11

fujitsuserverviewMatch4.11l11b

fujitsuserverviewMatch4.11l81

fujitsuserverviewMatch4.30.1

fujitsuserverviewMatch4.30.2

fujitsuserverviewMatch4.30.3

fujitsuserverviewMatch4.30.4

fujitsuserverviewMatch4.30.5

fujitsuserverviewMatch4.30.6

fujitsuserverviewMatch4.30.7

fujitsuserverviewMatch4.30.8

fujitsuserverviewMatch4.30.9

fujitsuserverviewMatch4.30.10

fujitsuserverviewMatch4.30.11

fujitsuserverviewMatch4.30.12

fujitsuserverviewMatch4.30.13

fujitsuserverviewMatch4.40.1

fujitsuserverviewMatch4.40.2

fujitsuserverviewMatch4.40.3

fujitsuserverviewMatch4.40.4

fujitsuserverviewMatch4.40.5

fujitsuserverviewMatch4.40.6

fujitsuserverviewMatch4.50.1

fujitsuserverviewMatch4.50.2

fujitsuserverviewMatch4.50.3

fujitsuserverviewMatch4.50.4

fujitsuserverviewMatch4.50.5

fujitsuserverviewMatch4.50.6

fujitsuserverviewMatch4.50.7

fujitsuserverviewMatch4.50.8

VendorProductVersionCPE
fujitsuserverview2.50cpe:2.3:a:fujitsu:serverview:2.50:*:*:*:*:*:*:*
fujitsuserverview3.60l98cpe:2.3:a:fujitsu:serverview:3.60l98:*:*:*:*:*:*:*
fujitsuserverview3.60l99cpe:2.3:a:fujitsu:serverview:3.60l99:*:*:*:*:*:*:*
fujitsuserverview4.10l11cpe:2.3:a:fujitsu:serverview:4.10l11:*:*:*:*:*:*:*
fujitsuserverview4.11l11bcpe:2.3:a:fujitsu:serverview:4.11l11b:*:*:*:*:*:*:*
fujitsuserverview4.11l81cpe:2.3:a:fujitsu:serverview:4.11l81:*:*:*:*:*:*:*
fujitsuserverview4.30.1cpe:2.3:a:fujitsu:serverview:4.30.1:*:*:*:*:*:*:*
fujitsuserverview4.30.2cpe:2.3:a:fujitsu:serverview:4.30.2:*:*:*:*:*:*:*
fujitsuserverview4.30.3cpe:2.3:a:fujitsu:serverview:4.30.3:*:*:*:*:*:*:*
fujitsuserverview4.30.4cpe:2.3:a:fujitsu:serverview:4.30.4:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
fujitsu	serverview	2.50	cpe:2.3:a:fujitsu:serverview:2.50:::::::*
fujitsu	serverview	3.60l98	cpe:2.3:a:fujitsu:serverview:3.60l98:::::::*
fujitsu	serverview	3.60l99	cpe:2.3:a:fujitsu:serverview:3.60l99:::::::*
fujitsu	serverview	4.10l11	cpe:2.3:a:fujitsu:serverview:4.10l11:::::::*
fujitsu	serverview	4.11l11b	cpe:2.3:a:fujitsu:serverview:4.11l11b:::::::*
fujitsu	serverview	4.11l81	cpe:2.3:a:fujitsu:serverview:4.11l81:::::::*
fujitsu	serverview	4.30.1	cpe:2.3:a:fujitsu:serverview:4.30.1:::::::*
fujitsu	serverview	4.30.2	cpe:2.3:a:fujitsu:serverview:4.30.2:::::::*
fujitsu	serverview	4.30.3	cpe:2.3:a:fujitsu:serverview:4.30.3:::::::*
fujitsu	serverview	4.30.4	cpe:2.3:a:fujitsu:serverview:4.30.4:::::::*