ByteOS Network

NVD Vulnerability Details :

CVE-2007-6197

Modified

Source-cve@mitre.org

Published At-01 Dec, 2007 | 06:46

Updated At-15 Oct, 2018 | 21:50

The Plumtree portal in BEA AquaLogic Interaction 5.0.2 through 5.0.4 and 6.0.1.218452 allows remote attackers to obtain version numbers and internal hostnames by reading comments in the HTML source of any page.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	5.0	MEDIUM	AV:N/AC:L/Au:N/C:P/I:N/A:N

Type: Primary

Version: 2.0

Base score: 5.0

Base severity: MEDIUM

Vector:

AV:N/AC:L/Au:N/C:P/I:N/A:N

CPE Matches

BEA Systems, Inc.

>>aqualogic_interaction>>5.0.2

cpe:2.3:a:bea:aqualogic_interaction:5.0.2:*:*:*:*:*:*:*

BEA Systems, Inc.

>>aqualogic_interaction>>5.0.3

cpe:2.3:a:bea:aqualogic_interaction:5.0.3:*:*:*:*:*:*:*

BEA Systems, Inc.

>>aqualogic_interaction>>5.0.4

cpe:2.3:a:bea:aqualogic_interaction:5.0.4:*:*:*:*:*:*:*

BEA Systems, Inc.

>>aqualogic_interaction>>6.0.1.218452

cpe:2.3:a:bea:aqualogic_interaction:6.0.1.218452:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-200	Primary	nvd@nist.gov

CWE ID: CWE-200

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
http://procheckup.com/Vulnerability_PR06-08.php	cve@mitre.org	Exploit
http://procheckup.com/Vulnerability_PR06-09.php	cve@mitre.org	Exploit
http://secunia.com/advisories/27840	cve@mitre.org	Patch Vendor Advisory
http://www.securityfocus.com/archive/1/484467/100/0/threaded	cve@mitre.org	N/A
http://www.securitytracker.com/id?1019005	cve@mitre.org	N/A
http://www.vupen.com/english/advisories/2007/4040	cve@mitre.org	N/A