PT-2010-1585 · Hitachi+1 · Cosminexus+6
Published
2010-04-21
·
Updated
2010-06-07
·
CVE-2009-4776
CVSS v2.0
9.3
High
| Vector | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Hitachi Cosminexus versions V4 through V8
Processing Kit for XML (affected versions not specified)
Developer's Kit for Java (affected versions not specified)
uCosminexus (affected versions not specified)
Electronic Form Workflow (affected versions not specified)
Groupmax (affected versions not specified)
IBM XL C/C++ Enterprise Edition versions 7 and 8
Description
The issue is related to a buffer overflow in certain Hitachi and IBM products. It allows remote attackers to have an unknown impact via vectors related to the use of GIF image processing APIs by a Java application.
Recommendations
For Hitachi Cosminexus versions V4 through V8, update to a version that addresses this issue.
For Processing Kit for XML, Developer's Kit for Java, uCosminexus, Electronic Form Workflow, Groupmax, and IBM XL C/C++ Enterprise Edition versions 7 and 8, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Developer'S Kit For Java
Electronic Form Workflow
Groupmax
Hitachi Cosminexus
Ibm Xl C/C++ Enterprise Edition
Processing Kit For Xml
Cosminexus