Vulnerability Description
Buffer overflow in the Single Sign-On function in Fujitsu Interstage Application Server 8.0.0 through 8.0.3 and 9.0.0, Interstage Studio 8.0.1 and 9.0.0, and Interstage Apworks 8.0.0 allows remote attackers to execute arbitrary code via a long URI.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Fujitsu | Interstage Application Server Enterprise | 8.0.0 |
| Fujitsu | Interstage Application Server Standard J | 8.0.0 |
| Fujitsu | Interstage Apworks Enterprise | 8.0.0 |
| Fujitsu | Interstage Apworks Standard J | 8.0.0 |
| Fujitsu | Interstage Studio Enterprise | 8.0.1 |
| Fujitsu | Interstage Studio Standard J | 8.0.1 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/29088Vendor Advisory
- http://www.fujitsu.com/global/support/software/security/products-f/interstage-20
- http://www.securityfocus.com/bid/27966
- http://www.vupen.com/english/advisories/2008/0662
- http://secunia.com/advisories/29088Vendor Advisory
- http://www.fujitsu.com/global/support/software/security/products-f/interstage-20
- http://www.securityfocus.com/bid/27966
- http://www.vupen.com/english/advisories/2008/0662
FAQ
What is CVE-2008-1040?
CVE-2008-1040 is a vulnerability with a CVSS score of 10.0 (HIGH). Buffer overflow in the Single Sign-On function in Fujitsu Interstage Application Server 8.0.0 through 8.0.3 and 9.0.0, Interstage Studio 8.0.1 and 9.0.0, and Interstage Apworks 8.0.0 allows remote att...
How severe is CVE-2008-1040?
CVE-2008-1040 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-1040?
Check the references section above for vendor advisories and patch information. Affected products include: Fujitsu Interstage Application Server Enterprise, Fujitsu Interstage Application Server Standard J, Fujitsu Interstage Apworks Enterprise, Fujitsu Interstage Apworks Standard J, Fujitsu Interstage Studio Enterprise.