CVE-2007-3613

Published: Jul 6, 2007Modified: Apr 23, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

Cross-site scripting (XSS) vulnerability in ADM:GETLOGFILE in SAP Internet Graphics Service (IGS) allows remote attackers to inject arbitrary web script or HTML via the PARAMS parameter.

Affected (9)

Products: Sap: Internet Graphics Server

1 product

Internet Graphics Server

Configuration A

9 vulnerable

Vulnerable Software	Affected Versions
Sap Internet Graphics Server	Version 6.40
Sap Internet Graphics Server	Version 6.40_patch_11
Sap Internet Graphics Server	Version 6.40_patch_12
Sap Internet Graphics Server	Version 6.40_patch_13
Sap Internet Graphics Server	Version 6.40_patch_14
Sap Internet Graphics Server	Version 6.40_patch_15
Sap Internet Graphics Server	Version 7.00_patch_1
Sap Internet Graphics Server	Version 7.00_patch_2
Sap Internet Graphics Server	Version 7.00_patch_3

References (18)

http://osvdb.org/36480

Source: cve@mitre.org

http://secunia.com/advisories/25950

Source: cve@mitre.org

Vendor Advisory

http://securityreason.com/securityalert/2865

Source: cve@mitre.org

http://www.ngssoftware.com/advisories/medium-risk-vulnerability-in-sap-internet-graphics-server/

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/472889/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/24775

Source: cve@mitre.org

Exploit

http://www.securitytracker.com/id?1018339

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2007/2452

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/35280

Source: cve@mitre.org

http://osvdb.org/36480

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/25950

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://securityreason.com/securityalert/2865

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ngssoftware.com/advisories/medium-risk-vulnerability-in-sap-internet-graphics-server/

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/472889/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/24775

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

http://www.securitytracker.com/id?1018339

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2007/2452

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/35280

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.