JVNDB-2006-000633

[Japanese]
JVNDB-2006-000633
ServerView cross-site scripting vulnerability
Overview
ServerView, server-monitoring software included with Fujitsu servers, contains a cross-site scripting vulnerability.
CVSS Severity (What is CVSS?)
CVSS V2 Severity: Base Metrics 4.3 (Medium) [IPA Score] Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None
Affected Products

FUJITSU ServerView V2.50 - V3.60L98 ServerView V4.10L11 - V4.11L81

Impact
An arbitrary script may be executed on the user's web browser.
Solution

Vendor Information
FUJITSU FUJITSU : PRIMEGY (Japanese) FUJITSU Security Information : JVN#73368472, JVN#76686161 (Japanese)
CWE (What is CWE?)
Cross-site Scripting(CWE-79) [NVD Evaluation]
CVE (What is CVE?)
CVE-2006-3579
References
JVN : JVN#76686161 National Vulnerability Database (NVD) : CVE-2006-3579 Secunia Advisory : SA21011 OPEN SOURCE VULNERABILITY DATABASE (OSVDB) : 27105
Revision History
[2008/05/21] Web page published

ServerView cross-site scripting vulnerability