製品・ソフトウェアに関する情報
Vulnerability Search
Fujitsu Interstage Application Server の Interstage 管理コンソールにおける任意のファイル読込/削除の脆弱性
Title Fujitsu Interstage Application Server の Interstage 管理コンソールにおける任意のファイル読込/削除の脆弱性
Summary

Fujitsu Interstage Application Server で使用されている Interstage 管理コンソールには、任意のファイルを読み取られる、または削除される脆弱性が存在します。

Possible impacts 第三者により、任意のファイルを読み取られる、または削除される可能性があります。
Solution

ベンダより一時的な対策が公開されています。ベンダ情報を参照して推奨される対策を実施してください。
Publication Date June 10, 2008, midnight
Registration Date Sept. 1, 2008, 7:16 p.m.
Last Update Feb. 15, 2012, 6:12 p.m.
CVSS2.0 : 警告
Score 6.4
Vector AV:N/AC:L/Au:N/C:P/I:P/A:N
Affected System
富士通
Interstage Application Framework Suite 
Interstage Application Server 
Interstage Apworks 
Interstage Business Application Server 
Interstage Job Workload Server 
Interstage Studio 
Interstage Web Server 
CVE (情報セキュリティ 共通脆弱性識別子)
CWE (共通脆弱性タイプ一覧)
ベンダー情報
その他
Change Log
No Changed Details Date of change
0 [2008年09月01日]
  掲載
[2012年02月15日]
  影響を受けるシステム:富士通 (interstage_200805) の情報を更新		 Feb. 17, 2018, 10:37 a.m.
NVD Vulnerability Information
CVE-2008-2674
Summary

Unspecified vulnerability in the Interstage Management Console, as used in Fujitsu Interstage Application Server 6.0 through 9.0.0A, Apworks Modelers-J 6.0 through 7.0, and Studio 8.0.1 and 9.0.0, allows remote attackers to read or delete arbitrary files via unspecified vectors.

Summary

Vulnerabilidad no especificada en la Interstage Management Console, tal como se utiliza en Fujitsu Interstage Application Server 6.0 a 9.0.0A, Apworks Modelers-J 6.0 a 7.0, y Studio 8.0.1 y 9.0.0, permite a atacantes remotos leer o borrar archivos de su elección a través de vectores no especificados.

Publication Date June 12, 2008, 9:21 p.m.
Registration Date Jan. 29, 2021, 1:37 p.m.
Last Update April 23, 2026, 9:35 a.m.
Affected software configurations
Configuration1 or higher or less more than less than
Configuration2 or higher or less more than less than
cpe:2.3:a:fujitsu:interstage_application_server_enterprise:v6.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_enterprise:v7.0.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_plus:v7.0.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_enterprise:v7.0.1:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_plus:v7.0.1:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_enterprise:8.0.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_enterprise:8.0.2:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_standard_j:8.0.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_standard_j:8.0.2:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_enterprise:v9.0.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_standard_j:v9.0.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_enterprise:8.0.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_enterprise:8.0.1:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_enterprise:8.0.2:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_enterprise:v7.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_enterprise:v9.0.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_enterprise:6.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_enterprise:7.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_enterprise:7.0.1:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_enterprise:8.0.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_enterprise:8.0.2:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_enterprise:9.0.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_plus:7.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_plus:7.0.1:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_standard_j:8.0.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_standard_j:8.0.2:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_standard_j:9.0.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_enterprise:8.0.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_enterprise:8.0.1:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_enterprise:8.0.2:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_enterprise:v6.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_enterprise:v7.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_enterprise:v9.0.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_enterprise:v9.0.0a:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_plus:v6.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_plus:v7.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_plus:v7.0.1:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_plus_developer:v6.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_plus_developer:v7.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_standard_j:8.0.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_standard_j:8.0.2:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_standard_j:v9.0.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_application_server_standard_j:v9.0.0a:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_apworks_modelers_j:v6.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_apworks_modelers_j:v6.0a:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_apworks_modelers_j:v7.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_studio_enterprise:8.0.1:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_studio_enterprise:v9.0.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_studio_standard_j:8.0.1:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_studio_standard_j:v9.0.0:*:*:*:*:*:*:*
cpe:2.3:a:fujitsu:interstage_business_application_server_enterprise:v8.0.0:*:*:*:*:*:*:*
Related information, measures and tools
Common Vulnerabilities List