medium
4.6
CWE
264
Advisory Published
Updated

CVE-2007-4564

First published: Tue Aug 28 2007(Updated: )

Cosminexus Manager in Cosminexus Application Server 07-00 and later might assign the wrong user's group permissions to logical user server processes, which allows local users to gain privileges.

Credit: cve@mitre.org

Affected SoftwareAffected VersionHow to fix
Hitachi Ucosminexus Application Server Standard=06_70_b
Hitachi Ucosminexus Application Server Standard=06_70_d
Hitachi Ucosminexus Application Server Standard=06_70_b
Hitachi Ucosminexus Service Platform=07_00
Hitachi Cosminexus Application Server Enterprise=06_50
Hitachi Ucosminexus Application Server Enterprise=06_72_b
Hitachi Cosminexus Application Server Standard=06_50_f
Hitachi Ucosminexus Application Server Enterprise=06_70_b
Hitachi Ucosminexus Application Server Standard=07_10
Hitachi Ucosminexus Application Server Standard=06_70
Hitachi Electronic Form Workflow -professional Library Set=07_00_b
Hitachi Ucosminexus Application Server Standard=07_00_1
Hitachi Ucosminexus Application Server Standard=06_70_b_1
Hitachi Ucosminexus Application Server Enterprise=07_00
Hitachi Ucosminexus Application Server Standard=06_72_1
Hitachi Ucosminexus Application Server Enterprise=07_10
Hitachi Electronic Form Workflow - Standard Set=07_00_b
Hitachi Ucosminexus Application Server Standard=07_00
Hitachi Ucosminexus Application Server Enterprise=07_10_06
Hitachi Ucosminexus Application Server Enterprise=06_71_b
Hitachi Ucosminexus Application Server Standard=06_70_b
Hitachi Cosminexus Application Server Enterprise=06_50_c_1
Hitachi Cosminexus Application Server Standard=06_51_b_1
Hitachi Ucosminexus Application Server Standard=07_00
Hitachi Cosminexus Application Server Standard=06_50_e_1
Hitachi Ucosminexus Application Server Standard=06_71
Hitachi Ucosminexus Application Server Enterprise=06_72_1
Hitachi Cosminexus Application Server Enterprise=06_50_e_1
Hitachi Ucosminexus Application Server Enterprise=06_70
Hitachi Ucosminexus Application Server Enterprise=07_00_12
Hitachi Cosminexus Application Server Enterprise=06_51_b_1
Hitachi Ucosminexus Application Server Enterprise=06_70_b_1
Hitachi Ucosminexus Application Server Enterprise=06_70_b
Hitachi Cosminexus Application Server Standard=06_50_c_1
Hitachi Ucosminexus Application Server Enterprise=07_10_08
Hitachi Ucosminexus Application Server Enterprise=06_71_b
Hitachi Ucosminexus Application Server Enterprise=07_10
Hitachi Ucosminexus Application Server Standard=07_10
Hitachi Ucosminexus Application Server Enterprise=07_00
Hitachi Ucosminexus Application Server Enterprise=07_10
Hitachi Ucosminexus Application Server Enterprise=06_70_b
Hitachi Cosminexus Application Server Standard=06_50
Hitachi Ucosminexus Application Server Standard=06_72_g
Hitachi Cosminexus Application Server Standard=06_51_c
Hitachi Ucosminexus Application Server Enterprise=07_00
Hitachi Ucosminexus Application Server Standard=07_10
Hitachi Cosminexus Application Server Standard=06_50_c_1
Hitachi Ucosminexus Application Server Enterprise=06_71_c
Hitachi Cosminexus Application Server Enterprise=06_51_c
Hitachi Ucosminexus Application Server Enterprise=07_10_1
Hitachi Ucosminexus Application Server Enterprise=06_70_a
Hitachi Cosminexus Application Server Enterprise=06_50_f
Hitachi Cosminexus Application Server Standard=06_50_c
Hitachi Electronic Form Workflow - Standard Set=07_00
Hitachi Cosminexus Application Server Enterprise=06_50_b
Hitachi Ucosminexus Application Server Standard=06_72_c
Hitachi Ucosminexus Application Server Standard=06_70_b
Hitachi Ucosminexus Application Server Enterprise=07-00-01
Hitachi Cosminexus Application Server Enterprise=06_50_c
Hitachi Ucosminexus Application Server Enterprise=06_71
Hitachi Ucosminexus Application Server Enterprise=06_70_b
Hitachi Ucosminexus Service Platform=07_10
Hitachi Ucosminexus Application Server Standard=06_72_b_1
Hitachi Ucosminexus Application Server Enterprise=06_72_b
Hitachi Ucosminexus Application Server Enterprise=06_70
Hitachi Electronic Form Workflow -professional Library Set=07_00
Hitachi Cosminexus Application Server Standard=06_51
Hitachi Cosminexus Application Server Enterprise=06_50
Hitachi Ucosminexus Application Server Enterprise=07_10
Hitachi Cosminexus Application Server Enterprise=06_50
Hitachi Ucosminexus Application Server Standard=06_70_c
Hitachi Ucosminexus Service Platform=07_10
Hitachi Ucosminexus Application Server Enterprise=07_10
Hitachi Cosminexus Application Server Enterprise=06_51
Hitachi Ucosminexus Application Server Standard=06_72_d
Hitachi Ucosminexus Application Server Enterprise=06_70_a
Hitachi Cosminexus Application Server Standard=06_50
Hitachi Cosminexus Application Server Standard=06_50
Hitachi Cosminexus Application Server Enterprise=06_50_c_1
Hitachi Ucosminexus Application Server Standard=06_71_b
Hitachi Ucosminexus Application Server Standard=07_10
Hitachi Ucosminexus Application Server Enterprise=06_70_d
Hitachi Cosminexus Application Server Standard=06_50
Hitachi Ucosminexus Application Server Enterprise=07_00
Hitachi Cosminexus Application Server Standard=06_50
Hitachi Ucosminexus Application Server Standard=06_70_a
Hitachi Cosminexus Application Server Enterprise=06_50
Hitachi Ucosminexus Application Server Standard=07_00
Hitachi Cosminexus Application Server Enterprise=06_50
Hitachi Ucosminexus Application Server Enterprise=06_70_g
Hitachi Ucosminexus Application Server Standard=07_00
Hitachi Ucosminexus Application Server Enterprise=06_72_g
Hitachi Cosminexus Application Server Standard=06_51
Hitachi Ucosminexus Application Server Standard=06_70_a
Hitachi Cosminexus Application Server Standard=06_50_b

Remedy

http://secunia.com/advisories/26589

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203