Sign-up

ID

VAR-201310-0806


TITLE

Arbitrary Commands Execution Vulnerability in JP1/Base

Trust: 0.8

sources: JVNDB: JVNDB-2013-004410

DESCRIPTION

The JP1/Base contains a vulnerability where arbitrary commands may be executed when it receives request messages from unexpected hosts in the network.Malicious users can exploit this vulnerability to execute arbitrary commands by sending request messages from an unexpected host.

Trust: 0.8

sources: JVNDB: JVNDB-2013-004410

AFFECTED PRODUCTS

vendor:hitachimodel:jp1/basescope: - version: -

Trust: 0.8

sources: JVNDB: JVNDB-2013-004410

CVSS

SEVERITY

CVSSV2

CVSSV3

VENDOR: JVNDB-2013-004410
value: HIGH

Trust: 0.8

VENDOR: JVNDB-2013-004410
severity: HIGH
baseScore: 8.3
vectorString: AV:A/AC:L/AU:N/C:C/I:C/A:C
accessVector: ADJACENT NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: NONE
impactScore: NONE
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.8

sources: JVNDB: JVNDB-2013-004410

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2013-004410

PATCH
title:HS13-022url:http://www.hitachi.co.jp/prod/comp/soft1/global/security/info/vuls/hs13-022/index.html
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2013-004410

EXTERNAL IDS
db:JVNDBid:JVNDB-2013-004410
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2013-004410

SOURCES
db:JVNDBid:JVNDB-2013-004410

LAST UPDATE DATE
2022-05-04T09:48:12.896000+00:00

SOURCES UPDATE DATE
db:JVNDBid:JVNDB-2013-004410date:2013-10-03T00:00:00

SOURCES RELEASE DATE
db:JVNDBid:JVNDB-2013-004410date:2013-10-03T00:00:00