Vulnerability Name:

CVE-2007-5808 (CCN-38188)

Assigned:2007-10-31
Published:2007-10-31
Updated:2017-07-29
Summary:Unspecified vulnerability in the Groupmax Collaboration - Schedule component in Hitachi Groupmax Collaboration Portal 07-30 through 07-30-/F and 07-32 through 07-32-/C, uCosminexus Collaboration Portal 06-30 through 06-30-/F and 06-32 through 06-32-/C, and Groupmax Collaboration Web Client - Mail/Schedule 07-30 through 07-30-/F and 07-32 through 07-32-/B might allow remote attackers to obtain sensitive information via unspecified vectors related to schedule portlets.
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
3.7 Low (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-noinfo
Vulnerability Consequences:Obtain Information
References:Source: MITRE
Type: CNA
CVE-2007-5808

Source: OSVDB
Type: UNKNOWN
42025

Source: CCN
Type: SA27451
Hitachi Products Information Disclosure Vulnerability

Source: SECUNIA
Type: Patch, Vendor Advisory
27451

Source: CCN
Type: Hitachi Security Vulnerability Information HS07-036
Unintended Display of Information when Using Groupmax Collaboration - Schedule

Source: CONFIRM
Type: Patch
http://www.hitachi-support.com/security_e/vuls_e/HS07-036_e/index-e.html

Source: CCN
Type: OSVDB ID: 42025
Hitachi Multiple Products Schedule Portlets Unspecified Information Disclosure

Source: BID
Type: UNKNOWN
26272

Source: CCN
Type: BID-26272
Hitachi Collaboration Portal Schedule Component Information Disclosure Vulnerability

Source: VUPEN
Type: UNKNOWN
ADV-2007-3667

Source: XF
Type: UNKNOWN
hitachi-groupmax-information-disclosure(38188)

Source: XF
Type: UNKNOWN
hitachi-groupmax-information-disclosure(38188)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:hitachi:groupmax_collaboration_portal:07_30:*:*:*:*:*:*:*
  • OR cpe:/a:hitachi:groupmax_collaboration_portal:07_30_b:*:*:*:*:*:*:*
  • OR cpe:/a:hitachi:groupmax_collaboration_portal:07_30_c:*:*:*:*:*:*:*
  • OR cpe:/a:hitachi:groupmax_collaboration_portal:07_30_d:*:*:*:*:*:*:*
  • OR cpe:/a:hitachi:groupmax_collaboration_portal:07_30_e:*:*:*:*:*:*:*
  • OR cpe:/a:hitachi:groupmax_collaboration_portal:07_30_f:*:*:*:*:*:*:*
  • OR cpe:/a:hitachi:groupmax_collaboration_portal:07_32:*:*:*:*:*:*:*
  • OR cpe:/a:hitachi:groupmax_collaboration_portal:07_32_b:*:*:*:*:*:*:*
  • OR cpe:/a:hitachi:groupmax_collaboration_portal:07_32_c:*:*:*:*:*:*:*
  • OR cpe:/a:hitachi:groupmax_collaboration_web_client:07_30:*:*:*:*:*:*:*
  • OR cpe:/a:hitachi:groupmax_collaboration_web_client:07_30_b:*:*:*:*:*:*:*
  • OR cpe:/a:hitachi:groupmax_collaboration_web_client:07_30_c:*:*:*:*:*:*:*
  • OR cpe:/a:hitachi:groupmax_collaboration_web_client:07_30_d:*:*:*:*:*:*:*
  • OR cpe:/a:hitachi:groupmax_collaboration_web_client:07_30_e:*:*:*:*:*:*:*
  • OR cpe:/a:hitachi:groupmax_collaboration_web_client:07_30_f:*:*:*:*:*:*:*
  • OR cpe:/a:hitachi:groupmax_collaboration_web_client:07_32:*:*:*:*:*:*:*
  • OR cpe:/a:hitachi:groupmax_collaboration_web_client:07_32_b:*:*:*:*:*:*:*
  • OR cpe:/a:hitachi:ucosminexus_collaboration_portal:06_30:*:*:*:*:*:*:*
  • OR cpe:/a:hitachi:ucosminexus_collaboration_portal:06_30_b:*:*:*:*:*:*:*
  • OR cpe:/a:hitachi:ucosminexus_collaboration_portal:06_30_c:*:*:*:*:*:*:*
  • OR cpe:/a:hitachi:ucosminexus_collaboration_portal:06_30_d:*:*:*:*:*:*:*
  • OR cpe:/a:hitachi:ucosminexus_collaboration_portal:06_30_e:*:*:*:*:*:*:*
  • OR cpe:/a:hitachi:ucosminexus_collaboration_portal:06_30_f:*:*:*:*:*:*:*
  • OR cpe:/a:hitachi:ucosminexus_collaboration_portal:06_32:*:*:*:*:*:*:*
  • OR cpe:/a:hitachi:ucosminexus_collaboration_portal:06_32_b:*:*:*:*:*:*:*
  • OR cpe:/a:hitachi:ucosminexus_collaboration_portal:06_32_c:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:microsoft:windows_2003_server:*:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    hitachi groupmax collaboration portal 07_30
    hitachi groupmax collaboration portal 07_30_b
    hitachi groupmax collaboration portal 07_30_c
    hitachi groupmax collaboration portal 07_30_d
    hitachi groupmax collaboration portal 07_30_e
    hitachi groupmax collaboration portal 07_30_f
    hitachi groupmax collaboration portal 07_32
    hitachi groupmax collaboration portal 07_32_b
    hitachi groupmax collaboration portal 07_32_c
    hitachi groupmax collaboration web client 07_30
    hitachi groupmax collaboration web client 07_30_b
    hitachi groupmax collaboration web client 07_30_c
    hitachi groupmax collaboration web client 07_30_d
    hitachi groupmax collaboration web client 07_30_e
    hitachi groupmax collaboration web client 07_30_f
    hitachi groupmax collaboration web client 07_32
    hitachi groupmax collaboration web client 07_32_b
    hitachi ucosminexus collaboration portal 06_30
    hitachi ucosminexus collaboration portal 06_30_b
    hitachi ucosminexus collaboration portal 06_30_c
    hitachi ucosminexus collaboration portal 06_30_d
    hitachi ucosminexus collaboration portal 06_30_e
    hitachi ucosminexus collaboration portal 06_30_f
    hitachi ucosminexus collaboration portal 06_32
    hitachi ucosminexus collaboration portal 06_32_b
    hitachi ucosminexus collaboration portal 06_32_c
    microsoft windows 2003 server *