[Japanese]

JVNDB-2008-000032

nProtect : Netizen denial of service (DoS) vulnerability

Overview

nProtect : Netizen contains a denial of service (DoS) vulnerability.

nProtect : Netizen from NetMove Corporation is security software that works only while communicating with specific web pages. nProtect : Netizen contains a denial of service (DoS) vulnerability.

Yuji Ukai of Fourteenforty Research Institute, Inc. reported this vulnerability to IPA.
JPCERT/CC coordinated with the vendor under Information Security Early Warning Partnership.
CVSS Severity (What is CVSS?)

Base Metrics: 4.3 (Medium) [IPA Score]
  • Access Vector: Network
  • Access Complexity: Medium
  • Authentication: None
  • Confidentiality Impact: None
  • Integrity Impact: None
  • Availability Impact: Partial

Affected Products


NetMove Corporation
  • nProtect : Netizen Ver5 prior to version "2008, 6, 16, 1"

Impact

An remote attacker could disable nProtect : Netizen by convincing a user to open a specially crafted web page.
Solution

[Update the Software]
Apply the latest update provided by the vendor.
Vendor Information

NetMove Corporation
  • nProtect News : 080620 (Japanese)
CWE (What is CWE?)

CVE (What is CVE?)

References

  1. JVN : JVN#36635562
Revision History

[2008/07/07]
  Web page published

Date Public2008/06/25
Date First Published2008/07/07
Date Last Updated2008/07/07