‫ Hitachi Multiple Cosminexus / uCosminexus Products Java Multiple Vulnerabilities

IRCAD2014043272

Number: IRCAD2014043272
Date: 2014/04/23

Criticality level: Highly critical

 
Software:

Cosminexus 5.x

Cosminexus 6.x

Cosminexus 7.x

Cosminexus 8.x

Cosminexus 9.x

Cosminexus Application Server 5.x

Cosminexus Application Server 6.x

Cosminexus Client 6.x

Cosminexus Developer 5.x

Cosminexus Developer 6.x

Cosminexus Studio 5.x

uCosminexus Application Server

uCosminexus Client

uCosminexus Developer

uCosminexus Operator

uCosminexus Service Architect

uCosminexus Service Platform

Description

Hitachi has acknowledged multiple vulnerabilities in multiple Hitachi Cosminexus and uCosminexus products, which can be exploited by malicious, local users to manipulate certain data and cause a DoS (Denial of Service), by malicious users to manipulate certain data, and by malicious people to disclose sensitive information, manipulate certain data, cause a DoS, and compromise a vulnerable system.

The vulnerabilities are caused due to a bundled, vulnerable version of Java within the Cosminexus Developer's Kit for Java.

Please see the vendor's advisory for a list of affected products and versions.

Solution:

Please contact your Hitachi support service representative concerning fixes for the products.

Resources:
secunia:
 
 

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 6 اردیبهشت 1393

امتیاز

امتیاز شما
تعداد امتیازها:0