Sign-up

ID

VAR-201009-0328


TITLE

JP1/NETM/Remote Control Agent Authentication Bypass Vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2010-002011

DESCRIPTION

A vulnerability in the file transfer feature in the JP1/NETM/Remote Control Agent may allow authentication bypass.A remote attacker could manipulate arbitrary files on the system installed with the Remote Control Agent.

Trust: 0.8

sources: JVNDB: JVNDB-2010-002011

AFFECTED PRODUCTS

vendor:hitachimodel:job management partner 1/remote control agentscope: - version: -

Trust: 0.8

vendor:hitachimodel:job management partner 1/software distribution clientscope: - version: -

Trust: 0.8

vendor:hitachimodel:job management partner 1/software distribution managerscope: - version: -

Trust: 0.8

vendor:hitachimodel:job management partner 1/software distribution managerscope:eqversion:embedded rdb edition

Trust: 0.8

vendor:hitachimodel:job management partner 1/software distribution submanagerscope: - version: -

Trust: 0.8

vendor:hitachimodel:jp1/netm/dm clientscope: - version: -

Trust: 0.8

vendor:hitachimodel:jp1/netm/dm clientscope:eqversion:remote control feature

Trust: 0.8

vendor:hitachimodel:jp1/netm/dm managerscope: - version: -

Trust: 0.8

vendor:hitachimodel:jp1/netm/dm managerscope:eqversion:embedded rdb edition

Trust: 0.8

vendor:hitachimodel:jp1/netm/dm submanagerscope: - version: -

Trust: 0.8

vendor:hitachimodel:jp1/netm/remote control agentscope: - version: -

Trust: 0.8

vendor:hitachimodel:jp1/netm/remote control agentscope:eqversion:for blade pc

Trust: 0.8

vendor:hitachimodel:jp1/remote control agentscope: - version: -

Trust: 0.8

vendor:hitachimodel:jp1/remote control setscope: - version: -

Trust: 0.8

vendor:hitachimodel:jp1/serverconductor/agentscope: - version: -

Trust: 0.8

sources: JVNDB: JVNDB-2010-002011

CVSS

SEVERITY

CVSSV2

CVSSV3

IPA: JVNDB-2010-002011
value: MEDIUM

Trust: 0.8

IPA: JVNDB-2010-002011
severity: MEDIUM
baseScore: 6.4
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.8

sources: JVNDB: JVNDB-2010-002011

PROBLEMTYPE DATA

problemtype:CWE-287

Trust: 0.8

sources: JVNDB: JVNDB-2010-002011

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2010-002011

PATCH
title:HS10-025url:http://www.hitachi.co.jp/prod/comp/soft1/global/security/info/vuls/hs10-025/index.html
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2010-002011

EXTERNAL IDS
db:JVNDBid:JVNDB-2010-002011
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2010-002011

SOURCES
db:JVNDBid:JVNDB-2010-002011

LAST UPDATE DATE
2022-05-04T09:24:29.788000+00:00

SOURCES UPDATE DATE
db:JVNDBid:JVNDB-2010-002011date:2010-09-21T00:00:00

SOURCES RELEASE DATE
db:JVNDBid:JVNDB-2010-002011date:2010-09-21T00:00:00