[Japanese]

JVNDB-2005-000805

nProtect Netizen has multiple vulnerabilities

Overview

nProtect Netizen contains multiple vulnerabilities.

- It may fetch update files from an arbitrary site
- It may download and save malicious files
- It may cause an abnormal web browser termination
CVSS Severity (What is CVSS?)

CVSS V2 Severity:
Base Metrics 4.3 (Medium) [IPA Score]
  • Access Vector: Network
  • Access Complexity: Medium
  • Authentication: None
  • Confidentiality Impact: None
  • Integrity Impact: Partial
  • Availability Impact: None
Affected Products


NetMove Corporation
  • nProtect : Netizen netizen Ver.4 and earlier
Metro,Inc.
  • nProtect : Netizen netizen Ver.4 and earlier

Impact

A remote attacker could lead a user to save a malicious file to the local storage and execute it or cause an abnormal web browser termination.
Solution

Vendor Information

NetMove Corporation Metro,Inc.
CWE (What is CWE?)

CVE (What is CVE?)

  1. CVE-2005-1301
References

  1. JVN : JVN#AF02FB4B
  2. National Vulnerability Database (NVD) : CVE-2005-1301
  3. Secunia Advisory : SA15101
Revision History

  • [2008/05/21]
      Web page published