Sign-up

ID

VAR-201304-0560


TITLE

Hitachi IT Operations Director Agent Buffer Overflow Vulnerability

Trust: 0.6

sources: CNVD: CNVD-2013-04832

DESCRIPTION

Hitachi IT Operations Director is a system management software from Hitachi, Japan, which automatically associates tasks with the IT infrastructure lifecycle. A buffer overflow vulnerability exists in Hitachi IT Operations Director. A remote attacker could use this vulnerability to execute arbitrary code with system privileges and could also cause a denial of service. Failed exploit attempts will likely result in a denial-of-service condition

Trust: 1.35

sources: CNVD: CNVD-2013-04832 // CNNVD: CNNVD-201305-130 // BID: 59629

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2013-04832

AFFECTED PRODUCTS

vendor:hitachimodel:it operations directorscope: - version: -

Trust: 0.6

vendor:hitachimodel:it operations directorscope:eqversion:03-00-03

Trust: 0.3

vendor:hitachimodel:it operations directorscope:eqversion:03-00-01

Trust: 0.3

vendor:hitachimodel:it operations directorscope:eqversion:03-00

Trust: 0.3

vendor:hitachimodel:it operations directorscope:eqversion:02-50-07

Trust: 0.3

vendor:hitachimodel:it operations directorscope:eqversion:02-50-06

Trust: 0.3

vendor:hitachimodel:it operations directorscope:eqversion:02-50-01

Trust: 0.3

vendor:hitachimodel:it operations directorscope:eqversion:02-50

Trust: 0.3

vendor:hitachimodel:it operations directorscope:neversion:03-00-04

Trust: 0.3

sources: CNVD: CNVD-2013-04832 // BID: 59629

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2013-04832
value: HIGH

Trust: 0.6

CNVD: CNVD-2013-04832
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2013-04832

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201305-130

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-201305-130

PATCH

title:Patch for Hitachi IT Operations Director Agent Buffer Overflow Vulnerabilityurl:https://www.cnvd.org.cn/patchinfo/show/33807

Trust: 0.6

sources: CNVD: CNVD-2013-04832

EXTERNAL IDS

db:HITACHIid:HS13-006

Trust: 0.9

db:BIDid:59629

Trust: 0.9

db:SECUNIAid:53132

Trust: 0.6

db:CNVDid:CNVD-2013-04832

Trust: 0.6

db:CNNVDid:CNNVD-201305-130

Trust: 0.6

sources: CNVD: CNVD-2013-04832 // BID: 59629 // CNNVD: CNNVD-201305-130

REFERENCES

url:http://www.hitachi.co.jp/prod/comp/soft1/global/security/info/vuls/hs13-006/index.html

Trust: 0.9

url:http://www.secunia.com/advisories/53132/

Trust: 0.6

url:http://www.securityfocus.com/bid/59629

Trust: 0.6

url:http://www.hitachi.com/index.html

Trust: 0.3

url:http://www.itoperations.com/

Trust: 0.3

sources: CNVD: CNVD-2013-04832 // BID: 59629 // CNNVD: CNNVD-201305-130

CREDITS

The vendor reported this issue.

Trust: 0.3

sources: BID: 59629

SOURCES

db:CNVDid:CNVD-2013-04832
db:BIDid:59629
db:CNNVDid:CNNVD-201305-130

LAST UPDATE DATE

2022-05-17T02:02:32.334000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2013-04832date:2013-05-07T00:00:00
db:BIDid:59629date:2013-04-19T00:00:00
db:CNNVDid:CNNVD-201305-130date:2013-05-08T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2013-04832date:2013-05-07T00:00:00
db:BIDid:59629date:2013-04-19T00:00:00
db:CNNVDid:CNNVD-201305-130date:2013-04-19T00:00:00