CVE-2007-4564

Cosminexus Manager in Cosminexus Application Server 07-00 and later might assign the wrong user's group permissions to logical user server processes, which allows local users to gain privileges.

Published: Aug 28, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-4564
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.6
AV:L/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
hitachi / ucosminexus_application_server_standard	06_70_b	06_70_b.x
hitachi / ucosminexus_application_server_standard	06_70_d	06_70_d.x
hitachi / ucosminexus_service_platform	07_00	07_00.x
hitachi / cosminexus_application_server_enterprise	06_50	06_50.x
hitachi / ucosminexus_application_server_enterprise	06_72_b	06_72_b.x
hitachi / cosminexus_application_server_standard	06_50_f	06_50_f.x
hitachi / ucosminexus_application_server_enterprise	06_70_b	06_70_b.x
hitachi / ucosminexus_application_server_standard	07_10	07_10.x
hitachi / ucosminexus_application_server_standard	06_70	06_70.x
hitachi / electronic_form_workflow_-professional_library_set	07_00_b	07_00_b.x
hitachi / ucosminexus_application_server_standard	07_00_1	07_00_1.x
hitachi / ucosminexus_application_server_standard	06_70_b_1	06_70_b_1.x
hitachi / ucosminexus_application_server_enterprise	07_00	07_00.x
hitachi / ucosminexus_application_server_standard	06_72_1	06_72_1.x
hitachi / ucosminexus_application_server_enterprise	07_10	07_10.x
hitachi / electronic_form_workflow_-_standard_set	07_00_b	07_00_b.x
hitachi / ucosminexus_application_server_standard	07_00	07_00.x
hitachi / ucosminexus_application_server_enterprise	07_10_06	07_10_06.x
hitachi / ucosminexus_application_server_enterprise	06_71_b	06_71_b.x
hitachi / cosminexus_application_server_enterprise	06_50_c_1	06_50_c_1.x
hitachi / cosminexus_application_server_standard	06_51_b_1	06_51_b_1.x
hitachi / cosminexus_application_server_standard	06_50_e_1	06_50_e_1.x
hitachi / ucosminexus_application_server_standard	06_71	06_71.x
hitachi / ucosminexus_application_server_enterprise	06_72_1	06_72_1.x
hitachi / cosminexus_application_server_enterprise	06_50_e_1	06_50_e_1.x
hitachi / ucosminexus_application_server_enterprise	06_70	06_70.x
hitachi / ucosminexus_application_server_enterprise	07_00_12	07_00_12.x
hitachi / cosminexus_application_server_enterprise	06_51_b_1	06_51_b_1.x
hitachi / ucosminexus_application_server_enterprise	06_70_b_1	06_70_b_1.x
hitachi / cosminexus_application_server_standard	06_50_c_1	06_50_c_1.x
hitachi / ucosminexus_application_server_enterprise	07_10_08	07_10_08.x
hitachi / cosminexus_application_server_standard	06_50	06_50.x
hitachi / ucosminexus_application_server_standard	06_72_g	06_72_g.x
hitachi / cosminexus_application_server_standard	06_51_c	06_51_c.x
hitachi / ucosminexus_application_server_enterprise	06_71_c	06_71_c.x
hitachi / cosminexus_application_server_enterprise	06_51_c	06_51_c.x
hitachi / ucosminexus_application_server_enterprise	07_10_1	07_10_1.x
hitachi / ucosminexus_application_server_enterprise	06_70_a	06_70_a.x
hitachi / cosminexus_application_server_enterprise	06_50_f	06_50_f.x
hitachi / cosminexus_application_server_standard	06_50_c	06_50_c.x
hitachi / electronic_form_workflow_-_standard_set	07_00	07_00.x
hitachi / cosminexus_application_server_enterprise	06_50_b	06_50_b.x
hitachi / ucosminexus_application_server_standard	06_72_c	06_72_c.x
hitachi / ucosminexus_application_server_enterprise	07-00-01	07-00-01.x
hitachi / cosminexus_application_server_enterprise	06_50_c	06_50_c.x
hitachi / ucosminexus_application_server_enterprise	06_71	06_71.x
hitachi / ucosminexus_service_platform	07_10	07_10.x
hitachi / ucosminexus_application_server_standard	06_72_b_1	06_72_b_1.x
hitachi / electronic_form_workflow_-professional_library_set	07_00	07_00.x
hitachi / cosminexus_application_server_standard	06_51	06_51.x
hitachi / ucosminexus_application_server_standard	06_70_c	06_70_c.x
hitachi / cosminexus_application_server_enterprise	06_51	06_51.x
hitachi / ucosminexus_application_server_standard	06_72_d	06_72_d.x
hitachi / ucosminexus_application_server_standard	06_71_b	06_71_b.x
hitachi / ucosminexus_application_server_enterprise	06_70_d	06_70_d.x
hitachi / ucosminexus_application_server_standard	06_70_a	06_70_a.x
hitachi / ucosminexus_application_server_enterprise	06_70_g	06_70_g.x
hitachi / ucosminexus_application_server_enterprise	06_72_g	06_72_g.x
hitachi / cosminexus_application_server_standard	06_50_b	06_50_b.x

Vulnerability Database

CVE-2007-4564

Deep Security Visibility Without the Complexity