ID
VAR-201006-0687
TITLE
Multiple Fujitsu Interstage Products Unspecified Cross Site Scripting Vulnerability
Trust: 0.3
sources:
BID: 41038
DESCRIPTION
Multiple Fujitsu Interstage products are prone to a cross-site scripting vulnerability because they fail to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authentication credentials and launch other attacks.
Trust: 0.3
sources:
BID: 41038
AFFECTED PRODUCTS
| vendor: | fujitsu | model: | interstage application framework suite enterprise edition l10 | scope: | eq | version: | 6.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server standard-j edition | scope: | eq | version: | 8.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server enterprise edition | scope: | eq | version: | 9.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server plus | scope: | eq | version: | 6.0.2 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application framework suite enterprise edition l10c | scope: | eq | version: | 6.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server plus l11 | scope: | eq | version: | 6.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server plus | scope: | eq | version: | 7.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server plus l10 | scope: | eq | version: | 6.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server plus | scope: | eq | version: | 7.0.1 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application framework suite enterprise edition | scope: | eq | version: | 6.0.2 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server plus | scope: | eq | version: | 6.0.1 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server standard-j edition | scope: | eq | version: | 9.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application framework suite enterprise edition | scope: | eq | version: | 7.0.1 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application framework suite standard edition l11 | scope: | eq | version: | 7.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server plus developer l10 | scope: | eq | version: | 7.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server enterprise edition | scope: | eq | version: | 8.0.3 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage business application server standard edition | scope: | eq | version: | 8.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application framework suite standard edition | scope: | eq | version: | 6.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage portalworks | scope: | eq | version: | 6.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server enterprise edition | scope: | eq | version: | 9.0.1 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server enterprise edition l10 | scope: | eq | version: | 7.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server standard edition | scope: | eq | version: | 8.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server standard-j edition b | scope: | eq | version: | 9.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server plus l20a | scope: | eq | version: | 5.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application framework suite standard edition l10 | scope: | eq | version: | 6.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server standard edition | scope: | eq | version: | 8.0.3 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server plus l10a | scope: | eq | version: | 6.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server standard-j edition | scope: | eq | version: | 8.0.3 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server standard-j edition | scope: | eq | version: | 9.0.1 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage business application server enterprise | scope: | eq | version: | 8.0.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server standard edition l11 | scope: | eq | version: | 7.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server enterprise edition | scope: | eq | version: | 6.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage portalworks l20 | scope: | eq | version: | 5.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server enterprise edition | scope: | eq | version: | 9.1 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage portalworks | scope: | eq | version: | 5.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server enterprise edition l10b | scope: | eq | version: | 6.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application framework suite enterprise edition | scope: | eq | version: | 6.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage interaction manager | scope: | eq | version: | 9.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server standard edition l10 | scope: | eq | version: | 6.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server plus l10c | scope: | eq | version: | 6.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server standard-j edition 9.1.0b | scope: | - | version: | - | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server standard-j edition b | scope: | eq | version: | 9.0.1 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server standard edition | scope: | eq | version: | 6.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application framework suite standard edition | scope: | eq | version: | 6.0.1 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server plus developer l10 | scope: | eq | version: | 6.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server plus l10 | scope: | eq | version: | 7.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server standard-j edition | scope: | eq | version: | 9.1 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage portalworks | scope: | eq | version: | 8.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage form coordinator workflow suite | scope: | eq | version: | 6.1 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server enterprise edition l11 | scope: | eq | version: | 7.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server plus | scope: | eq | version: | 6.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application framework suite standard edition l10b | scope: | eq | version: | 6.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage portalworks | scope: | eq | version: | 5.1 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage interaction manager | scope: | eq | version: | 9.0.1 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server enterprise edition | scope: | eq | version: | 6.0.1 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application framework suite standard edition | scope: | eq | version: | 6.0.2 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application framework suite standard edition l10c | scope: | eq | version: | 6.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server plus l20 | scope: | eq | version: | 5.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage business application server enterprise edition | scope: | eq | version: | 7.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage business application server enterprise edition | scope: | eq | version: | 8.0.1 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server enterprise edition 9.1.0a | scope: | - | version: | - | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server enterprise edition l10c | scope: | eq | version: | 6.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server enterprise edition b | scope: | eq | version: | 9.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application framework suite standard edition | scope: | eq | version: | 7.0.1 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage business application server enterprise edition | scope: | eq | version: | 7.0.1 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application framework suite standard edition l10 | scope: | eq | version: | 7.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application framework suite enterprise edition l10b | scope: | eq | version: | 6.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage interaction manager | scope: | eq | version: | 9.1.1 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server plus l11 | scope: | eq | version: | 7.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage portalworks l10 | scope: | eq | version: | 5.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server enterprise edition l10 | scope: | eq | version: | 6.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage interaction manager | scope: | eq | version: | 9.1 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server enterprise edition | scope: | eq | version: | 6.0.2 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server enterprise edition 9.1.0b | scope: | - | version: | - | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server enterprise edition | scope: | eq | version: | 7.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server enterprise edition | scope: | eq | version: | 8.0.1 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage portalworks l10 | scope: | eq | version: | 6.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server enterprise edition | scope: | eq | version: | 7.0.1 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server standard edition l10 | scope: | eq | version: | 7.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server enterprise edition b | scope: | eq | version: | 9.0.1 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage business application server standard edition | scope: | eq | version: | 8.0.1 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server standard edition | scope: | eq | version: | 6.0.2 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server enterprise edition | scope: | eq | version: | 8.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server standard edition | scope: | eq | version: | 7.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application framework suite enterprise edition | scope: | eq | version: | 6.0.1 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server plus l10b | scope: | eq | version: | 6.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application framework suite standard edition | scope: | eq | version: | 7.0.2 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server standard-j edition | scope: | eq | version: | 8.0.1 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server standard edition | scope: | eq | version: | 7.0.1 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server plus developer l20 | scope: | eq | version: | 5.0 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server plus | scope: | eq | version: | 5.1.1 | Trust: 0.3 |
| vendor: | fujitsu | model: | interstage application server standard edition | scope: | eq | version: | 6.0.1 | Trust: 0.3 |
sources:
BID: 41038
THREAT TYPE
network
Trust: 0.3
sources:
BID: 41038
TYPE
Input Validation Error
Trust: 0.3
sources:
BID: 41038
EXTERNAL IDS
| db: | BID | id: | 41038 | Trust: 0.3 |
sources:
BID: 41038
REFERENCES
| url: | http://www.fujitsu.com/ | Trust: 0.3 |
| url: | http://software.fujitsu.com/jp/security/products-fujitsu/solution/interstage_pw_201001.html | Trust: 0.3 |
sources:
BID: 41038
CREDITS
Reported by the vendor.
Trust: 0.3
sources:
BID: 41038
SOURCES
| db: | BID | id: | 41038 |
LAST UPDATE DATE
2022-05-17T01:43:40.272000+00:00
SOURCES UPDATE DATE
| db: | BID | id: | 41038 | date: | 2010-06-22T00:00:00 |
SOURCES RELEASE DATE
| db: | BID | id: | 41038 | date: | 2010-06-22T00:00:00 |