What is the severity of CVE-2007-4564?

CVE-2007-4564 is rated as a high severity vulnerability due to the potential for privilege escalation.

How do I fix CVE-2007-4564?

To fix CVE-2007-4564, update your Cosminexus Application Server or Service Platform to the latest version that includes the security patch.

Who is affected by CVE-2007-4564?

CVE-2007-4564 affects users of Cosminexus Application Server versions 06-70 and later, as well as certain versions of Hitachi Electronic Form Workflow.

What types of attacks can CVE-2007-4564 facilitate?

CVE-2007-4564 can facilitate local privilege escalation attacks by allowing unauthorized users to gain elevated permissions.

Is there a workaround for CVE-2007-4564?

As a temporary measure, limit local user access to systems running vulnerable versions of the Cosminexus software until an update can be applied.

Vulnerability/
CVE-2007-4564

medium

4.6

CWE

264

28/8/2007

7/8/2024

CVE-2007-4564

First published: Tue Aug 28 2007(Updated: )

Cosminexus Manager in Cosminexus Application Server 07-00 and later might assign the wrong user's group permissions to logical user server processes, which allows local users to gain privileges.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Hitachi uCosminexus Application Server	=06_70_b
Hitachi uCosminexus Application Server	=06_70_d
Hitachi uCosminexus Application Server	=06_70_b
Hitachi ucosminexus service platform	=07_00
Hitachi Cosminexus Application Server	=06_50
Hitachi uCosminexus Application Server	=06_72_b
Hitachi uCosminexus Application Server Standard	=06_50_f
Hitachi uCosminexus Application Server	=06_70_b
Hitachi uCosminexus Application Server	=07_10
Hitachi uCosminexus Application Server	=06_70
Hitachi Electronic Form Workflow - Professional Library Set	=07_00_b
Hitachi uCosminexus Application Server	=07_00_1
Hitachi uCosminexus Application Server	=06_70_b_1
Hitachi uCosminexus Application Server	=07_00
Hitachi uCosminexus Application Server	=06_72_1
Hitachi uCosminexus Application Server	=07_10
Hitachi Electronic Form Workflow - Standard Set	=07_00_b
Hitachi uCosminexus Application Server	=07_00
Hitachi uCosminexus Application Server	=07_10_06
Hitachi uCosminexus Application Server	=06_71_b
Hitachi uCosminexus Application Server	=06_70_b
Hitachi Cosminexus Application Server	=06_50_c_1
Hitachi uCosminexus Application Server Standard	=06_51_b_1
Hitachi uCosminexus Application Server	=07_00
Hitachi uCosminexus Application Server Standard	=06_50_e_1
Hitachi uCosminexus Application Server	=06_71
Hitachi uCosminexus Application Server	=06_72_1
Hitachi Cosminexus Application Server	=06_50_e_1
Hitachi uCosminexus Application Server	=06_70
Hitachi uCosminexus Application Server	=07_00_12
Hitachi Cosminexus Application Server	=06_51_b_1
Hitachi uCosminexus Application Server	=06_70_b_1
Hitachi uCosminexus Application Server	=06_70_b
Hitachi uCosminexus Application Server Standard	=06_50_c_1
Hitachi uCosminexus Application Server	=07_10_08
Hitachi uCosminexus Application Server	=06_71_b
Hitachi uCosminexus Application Server	=07_10
Hitachi uCosminexus Application Server	=07_10
Hitachi uCosminexus Application Server	=07_00
Hitachi uCosminexus Application Server	=07_10
Hitachi uCosminexus Application Server	=06_70_b
Hitachi uCosminexus Application Server Standard	=06_50
Hitachi uCosminexus Application Server	=06_72_g
Hitachi uCosminexus Application Server Standard	=06_51_c
Hitachi uCosminexus Application Server	=07_00
Hitachi uCosminexus Application Server	=07_10
Hitachi uCosminexus Application Server Standard	=06_50_c_1
Hitachi uCosminexus Application Server	=06_71_c
Hitachi Cosminexus Application Server	=06_51_c
Hitachi uCosminexus Application Server	=07_10_1
Hitachi uCosminexus Application Server	=06_70_a
Hitachi Cosminexus Application Server	=06_50_f
Hitachi uCosminexus Application Server Standard	=06_50_c
Hitachi Electronic Form Workflow - Standard Set	=07_00
Hitachi Cosminexus Application Server	=06_50_b
Hitachi uCosminexus Application Server	=06_72_c
Hitachi uCosminexus Application Server	=06_70_b
Hitachi uCosminexus Application Server	=07-00-01
Hitachi Cosminexus Application Server	=06_50_c
Hitachi uCosminexus Application Server	=06_71
Hitachi uCosminexus Application Server	=06_70_b
Hitachi ucosminexus service platform	=07_10
Hitachi uCosminexus Application Server	=06_72_b_1
Hitachi uCosminexus Application Server	=06_72_b
Hitachi uCosminexus Application Server	=06_70
Hitachi Electronic Form Workflow - Professional Library Set	=07_00
Hitachi uCosminexus Application Server Standard	=06_51
Hitachi Cosminexus Application Server	=06_50
Hitachi uCosminexus Application Server	=07_10
Hitachi Cosminexus Application Server	=06_50
Hitachi uCosminexus Application Server	=06_70_c
Hitachi ucosminexus service platform	=07_10
Hitachi uCosminexus Application Server	=07_10
Hitachi Cosminexus Application Server	=06_51
Hitachi uCosminexus Application Server	=06_72_d
Hitachi uCosminexus Application Server	=06_70_a
Hitachi uCosminexus Application Server Standard	=06_50
Hitachi uCosminexus Application Server Standard	=06_50
Hitachi Cosminexus Application Server	=06_50_c_1
Hitachi uCosminexus Application Server	=06_71_b
Hitachi uCosminexus Application Server	=07_10
Hitachi uCosminexus Application Server	=06_70_d
Hitachi uCosminexus Application Server Standard	=06_50
Hitachi uCosminexus Application Server	=07_00
Hitachi uCosminexus Application Server Standard	=06_50
Hitachi uCosminexus Application Server	=06_70_a
Hitachi Cosminexus Application Server	=06_50
Hitachi uCosminexus Application Server	=07_00
Hitachi Cosminexus Application Server	=06_50
Hitachi uCosminexus Application Server	=06_70_g
Hitachi uCosminexus Application Server	=07_00
Hitachi uCosminexus Application Server	=06_72_g
Hitachi uCosminexus Application Server Standard	=06_51
Hitachi uCosminexus Application Server	=06_70_a
Hitachi uCosminexus Application Server Standard	=06_50_b

Remedy

http://secunia.com/advisories/26589

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2007-4564?
CVE-2007-4564 is rated as a high severity vulnerability due to the potential for privilege escalation.
How do I fix CVE-2007-4564?
To fix CVE-2007-4564, update your Cosminexus Application Server or Service Platform to the latest version that includes the security patch.
Who is affected by CVE-2007-4564?
CVE-2007-4564 affects users of Cosminexus Application Server versions 06-70 and later, as well as certain versions of Hitachi Electronic Form Workflow.
What types of attacks can CVE-2007-4564 facilitate?
CVE-2007-4564 can facilitate local privilege escalation attacks by allowing unauthorized users to gain elevated permissions.
Is there a workaround for CVE-2007-4564?
As a temporary measure, limit local user access to systems running vulnerable versions of the Cosminexus software until an update can be applied.

agent/type
collector/mitre-cve
source/MITRE
agent/references
agent/author
agent/last-modified-date
agent/weakness
agent/severity
agent/remedy
agent/first-publish-date
agent/event
agent/description
agent/source
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
agent/softwarecombine
vendor/hitachi
canonical/hitachi ucosminexus application server
version/hitachi ucosminexus application server/06_70_b
version/hitachi ucosminexus application server/06_70_d
canonical/hitachi ucosminexus service platform
version/hitachi ucosminexus service platform/07_00
canonical/hitachi cosminexus application server
version/hitachi cosminexus application server/06_50
version/hitachi ucosminexus application server/06_72_b
canonical/hitachi ucosminexus application server standard
version/hitachi ucosminexus application server standard/06_50_f
version/hitachi ucosminexus application server/07_10
version/hitachi ucosminexus application server/06_70
canonical/hitachi electronic form workflow - professional library set
version/hitachi electronic form workflow - professional library set/07_00_b
version/hitachi ucosminexus application server/07_00_1
version/hitachi ucosminexus application server/06_70_b_1
version/hitachi ucosminexus application server/07_00
version/hitachi ucosminexus application server/06_72_1
canonical/hitachi electronic form workflow - standard set
version/hitachi electronic form workflow - standard set/07_00_b
version/hitachi ucosminexus application server/07_10_06
version/hitachi ucosminexus application server/06_71_b
version/hitachi cosminexus application server/06_50_c_1
version/hitachi ucosminexus application server standard/06_51_b_1
version/hitachi ucosminexus application server standard/06_50_e_1
version/hitachi ucosminexus application server/06_71
version/hitachi cosminexus application server/06_50_e_1
version/hitachi ucosminexus application server/07_00_12
version/hitachi cosminexus application server/06_51_b_1
version/hitachi ucosminexus application server standard/06_50_c_1
version/hitachi ucosminexus application server/07_10_08
version/hitachi ucosminexus application server standard/06_50
version/hitachi ucosminexus application server/06_72_g
version/hitachi ucosminexus application server standard/06_51_c
version/hitachi ucosminexus application server/06_71_c
version/hitachi cosminexus application server/06_51_c
version/hitachi ucosminexus application server/07_10_1
version/hitachi ucosminexus application server/06_70_a
version/hitachi cosminexus application server/06_50_f
version/hitachi ucosminexus application server standard/06_50_c
version/hitachi electronic form workflow - standard set/07_00
version/hitachi cosminexus application server/06_50_b
version/hitachi ucosminexus application server/06_72_c
version/hitachi ucosminexus application server/07-00-01
version/hitachi cosminexus application server/06_50_c
version/hitachi ucosminexus service platform/07_10
version/hitachi ucosminexus application server/06_72_b_1
version/hitachi electronic form workflow - professional library set/07_00
version/hitachi ucosminexus application server standard/06_51
version/hitachi ucosminexus application server/06_70_c
version/hitachi cosminexus application server/06_51
version/hitachi ucosminexus application server/06_72_d
version/hitachi ucosminexus application server/06_70_g
version/hitachi ucosminexus application server standard/06_50_b

CVE-2007-4564

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2007-4564?

How do I fix CVE-2007-4564?

Who is affected by CVE-2007-4564?

What types of attacks can CVE-2007-4564 facilitate?

Is there a workaround for CVE-2007-4564?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2007-4564?

How do I fix CVE-2007-4564?

Who is affected by CVE-2007-4564?

What types of attacks can CVE-2007-4564 facilitate?

Is there a workaround for CVE-2007-4564?