CVE-2008-5719

{"id": "CVE-2008-5719", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2008-12-26T17:30:00.467", "references": [{"url": "http://secunia.com/advisories/33281", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/alerts/2008/Dec/1021483.html", "source": "cve@mitre.org"}, {"url": "http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS08-026/index.html", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/32833", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-79"}]}], "descriptions": [{"lang": "en", "value": "Cross-site scripting (XSS) vulnerability in Hitachi Groupmax Web Workflow SDK Set for Active Server Pages before 06-52-/C and Hitachi Groupmax Workflow - Development Kit for Active Server Pages before 06-52-/A allows remote attackers to inject arbitrary web script or HTML via unspecified vectors."}, {"lang": "es", "value": "Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en Hitachi Groupmax Web Workflow SDK Set para Active Server Pages antes de v06-52-/C e Hitachi Groupmax Workflow - Development Kit para Active Server Pages antes de v06-52-/A permite a atacantes remotos inyectar secuencias de comandos web o HTML mediante vectores no especificados."}], "lastModified": "2009-02-18T06:25:28.437", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "970367C6-1AEE-4C40-AC0D-7384DABE7C0A", "versionEndIncluding": "06-52_b"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:03-10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "127792A9-5BFF-4DAB-BE37-091BCDE81414"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:03-10_a:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "564EEAFC-3253-4F1A-AEA9-D35A72A9D00A"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:03-10_b:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1867AB6D-867D-4B28-99C5-6517F8F293C5"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:03-10_c:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EFDD3AF3-12C5-49DE-9CDA-0449381336F0"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:03-10_d:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "24393FD0-F237-4CBB-80AB-D91EF7FA75A4"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-00:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "73A4B03B-328C-4484-9D50-BAF02893889A"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-00_a:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7D6114DF-F46E-4BDD-847D-338F9A11E999"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-00_b:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6C7BE040-D36E-493E-BB12-F27195726991"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-00_c:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BBC102A3-DD3B-4989-98EF-BE3CAFFA94BD"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-00_d:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "92829CAC-FD6D-4900-B1E1-DCF94AF9E145"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "75CA0776-4705-4D9E-8F5A-216F04E4B0F6"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-10_a:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7D74C462-8CCC-4D9E-8280-F7D1EFD99593"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-10_b:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EA6C17F6-6CCE-46A2-9E35-BEBB87320EED"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-10_c:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E8DF9449-8FFA-46A8-9EB8-F8D66CF87FF2"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7C112803-F9FC-42F6-A94F-6F1828159C5C"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-11_a:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8A957A81-3537-463F-BD71-A79158172A39"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-11_b:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4308F30C-28F7-4CC2-87A7-7DBA68B010F2"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-11_c:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9B6CB1BA-4094-42A4-B88D-CF3A34F79C59"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-11_d:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6AC3C0E1-BBBF-47E5-AC2F-A75E900704B8"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-11_e:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6517A78C-246C-4834-B197-E562408070E3"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-20:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "63FB5080-E1E0-45A3-9701-38F1405ACC36"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-20_a:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1360FF36-04A2-477E-9B73-94AAEE8CEE06"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-20_b:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DC0AAAF9-A390-4B48-971C-43D3E91603F8"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:05-20_c:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0C96627C-D320-43C9-996A-2D1A36F7B124"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:06-00:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "70A74D9C-9887-4524-8D08-26947C2147DA"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:06-01:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D7F869E6-5913-4671-A88B-74AF7569DAA3"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:06-02:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BBF9061B-714B-415A-9938-0A2D3F0D6EF6"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:06-03:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "62F0AF46-F5F8-4021-8E4E-852C7158B034"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:06-03_a:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "448026A0-E0A6-464A-81AC-F054A4A56AD1"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:06-50:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B9EA1066-6EA1-4BFD-A2DB-F3E0ADF8BCA7"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:06-51:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6227E691-D128-47F1-A17C-0326A3B4AC1D"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:06-52:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5AC9A5AC-2B2F-40A2-BAAC-7B50B2B14DAD"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_web_workflow_sdk_set_for_active_server_pages:06-52_a:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D29C195A-B1D0-40BD-8D1A-474DD30238C1"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9313F7D1-75D8-4541-A913-18CEBB760EF7", "versionEndIncluding": "06-52"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:3-10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7F181E44-B7A4-4874-862E-4C2C5711BEE8"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:3-10_a:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "31CE75B1-BB8F-429F-91DB-1EE5D4EAC78C"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:3-10_b:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "92432528-0A35-4E7E-8BA7-BE6EFA1FE689"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:05-00:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "68F1C3DE-5BCC-45B7-AE3B-AE39B0DDD763"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:05-00_a:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4FD414F9-F7BB-4B77-A072-48EFABF08414"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:05-00_b:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "94FB1BE8-8D8F-448A-8B21-93C8298C0BC3"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:05-10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "35A2431C-2CC0-4428-8654-96749A36E0CC"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:05-10_a:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "02712285-5746-427B-81AB-78C078A1917E"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:05-11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ABDFBC58-DEAA-4D4C-BDE9-74725C513912"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:05-11_a:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6D98A1F6-0DCA-4B24-991A-6BABE9214D0D"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:05-20:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DF737FC6-414E-4BC5-A0E1-B2562B3AEF86"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:05-20_a:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AD4E473F-41EC-46E3-A598-1CA8515C3919"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:06-00:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "486BCEF1-EC15-406F-8BDE-57C958AAD2FC"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:06-01:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "272EEBC9-1462-4566-AD38-6DEDD30AE51B"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:06-02:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1119349C-A2DA-4170-97AF-B1DBB1F7266E"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:06-03:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "753DF9B2-008F-498B-961C-873A7DDA13E5"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:06-03_a:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7CB1AFC6-2711-499E-A8CD-BFC7617E6685"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:06-50:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "86B391D2-F27D-4666-8091-324EA24B694C"}, {"criteria": "cpe:2.3:a:hitachi:groupmax_workflow_to_development_kit_for_active_server_pages:06-51:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F68E3986-5C94-4AAA-B24A-A98D8068E21E"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}