[Japanese]

JVNDB-2008-001614

JP1/NETM/DM SubManager and JP1/NETM/DM Client Process Termination Vulnerability

Overview

JP1/NETM/DM SubManager and JP1/NETM/DM Client, enabled with the JP1 event notification setting, have a process termination vulnerability where process may terminate when error occurs while receiving job execution requests.
CVSS Severity (What is CVSS?)

CVSS V2 Severity:
Base Metrics 5.0 (Medium) [IPA Score]
  • Access Vector: Network
  • Access Complexity: Low
  • Authentication: None
  • Confidentiality Impact: None
  • Integrity Impact: None
  • Availability Impact: Partial
Affected Products


Hitachi, Ltd
  • JP1/NETM/DM SubManager
  • JP1/NETM/DM Client

Impact

A computer may not be able to receive job execution requests from the upper level systems.
Solution

Please refer to the 'Vendor Information' section for the official countermeasure and take appropriate action.
Vendor Information

Hitachi, Ltd
  • Hitachi Software Vulnerability Information : HS08-019
CWE (What is CWE?)

  1. No Mapping(CWE-noinfo) [IPA Evaluation]
CVE (What is CVE?)

References

  1. JVN iPedia (Japanese) : JVNDB-2008-001614
Revision History

  • [2008/09/09]
      Web page published

Date Public2008/08/04
Date First Published2008/09/09
Date Last Updated2008/09/09