Unrated severityNVD Advisory· Published Dec 1, 2007· Updated Apr 23, 2026

CVE-2007-6197

Description

The Plumtree portal in BEA AquaLogic Interaction 5.0.2 through 5.0.4 and 6.0.1.218452 allows remote attackers to obtain version numbers and internal hostnames by reading comments in the HTML source of any page.

Affected products

Bea/Aqualogic Interaction4 versions
cpe:2.3:a:bea:aqualogic_interaction:5.0.2:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:bea:aqualogic_interaction:5.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:bea:aqualogic_interaction:5.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:bea:aqualogic_interaction:5.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:bea:aqualogic_interaction:6.0.1.218452:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/27840nvdPatchVendor Advisory
procheckup.com/Vulnerability_PR06-08.phpnvdExploit
procheckup.com/Vulnerability_PR06-09.phpnvdExploit
www.securityfocus.com/archive/1/484467/100/0/threadednvd
www.securitytracker.com/idnvd
www.vupen.com/english/advisories/2007/4040nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000