[Japanese]

JVNDB-2007-000711

TPBroker Denial of Service Vulnerability

Overview

TPBroker Object Transaction Monitor and Cosminexus TPBroker Object Transaction Monitor terminate abnormally when the TSC Domain Manager receives invalid messages.
CVSS Severity (What is CVSS?)

CVSS V2 Severity:
Base Metrics 5.0 (Medium) [IPA Score]
  • Access Vector: Network
  • Access Complexity: Low
  • Authentication: None
  • Confidentiality Impact: None
  • Integrity Impact: None
  • Availability Impact: Partial
Affected Products


Hitachi, Ltd
  • Cosminexus TPBroker Object Transaction Monitor
  • TPBroker Object Transaction Monitor

Impact

An attacker could cause a Denial of Service (DoS) condition.
Solution

Please refer to the 'Vendor Information' section for official remediation and take appropriate action.
Vendor Information

Hitachi, Ltd
  • Hitachi Software Vulnerability Information : HS07-032
CWE (What is CWE?)

  1. Improper Input Validation(CWE-20) [NVD Evaluation]
CVE (What is CVE?)

  1. CVE-2007-5283
References

  1. National Vulnerability Database (NVD) : CVE-2007-5283
  2. Secunia Advisory : SA27035
  3. SecurityFocus : 25936
  4. ISS X-Force Database : 36968
  5. FrSIRT Advisories : FrSIRT/ADV-2007-3376
Revision History

  • [2008/05/21]
      Web page published

Date Public2007/08/31
Date First Published2008/05/21
Date Last Updated2008/05/21