CVE-2007-3397

{"id": "CVE-2007-3397", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2007-06-26T17:30:00.000", "references": [{"url": "http://osvdb.org/41644", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/25817", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24015854", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://www-1.ibm.com/support/docview.wss?uid=swg21261071", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/24608", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://www.securitytracker.com/id?1018288", "source": "cve@mitre.org"}, {"url": "http://osvdb.org/41644", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/25817", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24015854", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www-1.ibm.com/support/docview.wss?uid=swg21261071", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/24608", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securitytracker.com/id?1018288", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "The web container in IBM WebSphere Application Server (WAS) before 6.0.2.21, and 6.1.x before 6.1.0.9, sends response data intended for a different request in certain circumstances after a closed connection error, which might allow remote attackers to obtain sensitive information."}, {"lang": "es", "value": "El contenedor web en IBM WebSphere Application Server (WAS) anterior a 6.0.2.21, y 6.1.x anterior a 6.1.0.9, env\u00eda los datos de respuesta previstos para una petici\u00f3n diferente en ciertas circunstancias despu\u00e9s de un error de cierre de conexi\u00f3n, que puede permitir que atacantes remotos obtengan informaci\u00f3n sensible."}], "lastModified": "2024-11-21T00:33:08.377", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "714C405D-1E8F-45C1-8A09-5103F0080C76"}, {"criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C7F31FD3-8681-4F07-9644-5CC87D512520"}, {"criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C2604E01-E43E-4882-8896-5E646E850286"}, {"criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "458BAD79-958E-4665-B1F8-0D46E0C57045"}, {"criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0B68EE27-CC4F-4530-9DFE-D94171C45F64"}, {"criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AC1A723F-D685-4FE5-8938-5682A2D02155"}, {"criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "810E5AEC-5C35-4962-B9BB-32D66290D1D2"}, {"criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9643B593-DADF-4F57-B41E-541C7F554A4C"}, {"criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "521DB050-3C94-49BF-8666-6EC2C358AA27"}, {"criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DB4AB6BD-4439-4100-A3CE-4600AED10B65"}, {"criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "375DF4AF-3C7C-47C3-BBB8-AF2B3827AC13"}, {"criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "91CC2DA7-BAA6-4061-8D0C-81F002DEF06D"}, {"criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.17:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "59BEDD70-B6DB-448F-A998-3E8774B0DB8C"}, {"criteria": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.19:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F200042C-D45E-4CAD-BF6E-E3DADF4D1D21"}, {"criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "95255265-6D69-46D3-9FFA-8EDB1734375C"}, {"criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5FC6EB31-9707-408B-8BF5-66BD23441A75"}, {"criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9B73E052-AF4F-4543-AA03-F5B1FA976EA8"}, {"criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "23171B81-C991-467A-95A4-EDDAC59C37BC"}, {"criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2586C584-3258-414B-AB28-1EBA0DBD0B83"}, {"criteria": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BCA175EA-EDC6-4228-8E28-E9BBC981E60A"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}