CVE-2007-6197: Infoleak
First published: Sat Dec 01 2007(Updated: )
The Plumtree portal in BEA AquaLogic Interaction 5.0.2 through 5.0.4 and 6.0.1.218452 allows remote attackers to obtain version numbers and internal hostnames by reading comments in the HTML source of any page.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| BEA AquaLogic Interaction | =6.0.1.218452 | |
| BEA AquaLogic Interaction | =5.0.2 | |
| BEA AquaLogic Interaction | =5.0.3 | |
| BEA AquaLogic Interaction | =5.0.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/remedy
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- collector/nvd-historical
- collector/nvd-index
- vendor/bea
- canonical/bea aqualogic interaction
- version/bea aqualogic interaction/6.0.1.218452
- version/bea aqualogic interaction/5.0.2
- version/bea aqualogic interaction/5.0.3
- version/bea aqualogic interaction/5.0.4