ソフト名:Cosminexus 5.x~8.x, Cosminexus Application Server 6.x, Cosminexus Server 4.x, Cosminexus Studio 4.x, Hitachi Developer's Kit for Java, Hitachi Processing Kit for XML, uCosminexus Application Server, uCosminexus Client, uCosminexus Developer, uCosminexus Operator, uCosminexus Portal Framework, uCosminexus Service Architect, uCosminexus Service Platform
回避策:アップデートにて対応
脆弱性:機密情報の奪取
ソース:http://www.hitachi.co.jp/Prod/comp/soft1/global/prod/products.html#Cosminexus
http://www.hitachi.co.jp/Prod/comp/soft1/global/prod/cosminexus/index.html
http://www.hitachi.co.jp/
http://www.hitachi.co.jp/Prod/comp/soft1/global/prod/cosminexus/sol/aps/aps_view.html
http://www.hitachi.co.jp/Prod/comp/soft1/global/prod/cosminexus/sol/dev/dev_view.html
http://www.hitachi.co.jp/Prod/comp/soft1/global/prod/cosminexus/sol/epf/port_view.html
http://www.hitachi.co.jp/Prod/comp/soft1/global/prod/cosminexus/sol/sp/sp_view.html
http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS10-030/index.html
http://secunia.com/advisories/41791/
http://secunia.com/advisories/42377/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3555
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3548
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3554
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3561
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3564
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3566
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3567
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3571
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3574
CVE:CVE-2009-3555, CVE-2010-3548, CVE-2010-3554, CVE-2010-3561, CVE-2010-3564, CVE-2010-3566, CVE-2010-3567, CVE-2010-3571, CVE-2010-3574
危険性:High Risk
2010-11-19
日立製品
ソフト名:Hitachi Cosminexus Collaboration Server 6.x, Hitachi Groupmax Collaboration - Server 7.x, Hitachi uCosminexus Collaboration - Server 6.x
回避策:HS10-029にて対応
脆弱性:DoS攻撃, アプリケーションのクラッシュ
ソース:http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS10-029/index.html
http://www.securityfocus.com/bid/44907
http://secunia.com/advisories/42299
http://www.vupen.com/english/advisories/2010/3013
危険性:Low Risk
回避策:HS10-029にて対応
脆弱性:DoS攻撃, アプリケーションのクラッシュ
ソース:http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS10-029/index.html
http://www.securityfocus.com/bid/44907
http://secunia.com/advisories/42299
http://www.vupen.com/english/advisories/2010/3013
危険性:Low Risk
2010-11-17
日立製品
ソフト名:Hitachi EUR Form Client, Hitachi EUR Form Service, Hitachi uCosminexus EUR Form Service
回避策:HS10-027にて対応
脆弱性:リモートコード実行, 不特定のエラー
ソース:http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS10-027/index.html
http://secunia.com/advisories/42207
http://www.vupen.com/english/advisories/2010/2989
危険性:High Risk
回避策:HS10-027にて対応
脆弱性:リモートコード実行, 不特定のエラー
ソース:http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS10-027/index.html
http://secunia.com/advisories/42207
http://www.vupen.com/english/advisories/2010/2989
危険性:High Risk
2010-07-14
日立製品
ソフト名:Hitachi Jp1/ Serverconductor / Deployment Manager 07-50 - Standard~08-80-/A - Enterprise, Hitachi Serverconductor / Deployment Manager 01-00~07-59 - Enterprise
回避策:HS10-013にて対応
脆弱性:DoS攻撃, アプリケーションの終了, アプリケーションの再起動
ソース:http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS10-013/index.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2625
http://secunia.com/advisories/40343
http://www.vupen.com/english/advisories/2010/1635
CVE:CVE-2010-2625
危険性:Low Risk
回避策:HS10-013にて対応
脆弱性:DoS攻撃, アプリケーションの終了, アプリケーションの再起動
ソース:http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS10-013/index.html
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2625
http://secunia.com/advisories/40343
http://www.vupen.com/english/advisories/2010/1635
CVE:CVE-2010-2625
危険性:Low Risk
2010-05-21
日立製品
ソフト名:日立製品
回避策:あり(HS10-006)
脆弱性:バッファオーバーフロー, リモートコード実行, アプリケーションのクラッシュ
ソース:http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS10-006/index.html
http://www.securityfocus.com/bid/40224
http://www.frsirt.com/english/advisories/2010/1170
危険性:High Risk
回避策:あり(HS10-006)
脆弱性:バッファオーバーフロー, リモートコード実行, アプリケーションのクラッシュ
ソース:http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS10-006/index.html
http://www.securityfocus.com/bid/40224
http://www.frsirt.com/english/advisories/2010/1170
危険性:High Risk
2010-03-05
日立製品
ソフト名:Hitachi Cosminexus Collaboration Portal, Cosminexus Collaboration Portal - Forum/File Sharing, Electronic Form Workflow Set, Electronic Form Workflow Set Developer, Groupmax Collaboration Portal, Groupmax Collaboration Web Client - Forum/File Sharing, Groupmax Collaboration Portal, Groupmax Collaboration Web Client - Mail/Schedule, JP1/Integrated Management - Service Support, uCosminexus Collaboration Portal, - Forum/File Sharing, uCosminexus Content Manager, uCosminexus Electronic Form Workflow QuickStart, uCosminexus Electronic Form Workflow QuickStart - HiRDB, uCosminexus Navigation Developer, uCosminexus Navigation Platform, uCosminexus Navigation Platform User License, uCosminexus Navigation Platform Authoring License, uCosminexus Portal Framework Entry Set
回避策:あり
脆弱性:XSS
ソース:http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS10-001/index.html
http://www.securityfocus.com/bid/38429
http://secunia.com/advisories/38737
危険性:Medium Risk
回避策:あり
脆弱性:XSS
ソース:http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS10-001/index.html
http://www.securityfocus.com/bid/38429
http://secunia.com/advisories/38737
危険性:Medium Risk
登録:
投稿 (Atom)
