All the vulnerabilites related to TripodWorks CO.,LTD - GIGAPOD
jvndb-2014-000123
Vulnerability from jvndb
Published
2014-10-16 13:51
Modified
2024-05-13 18:10
Summary
GIGAPOD vulnerable to denial-of-service (DoS)
Details
GIGAPOD provided by TripodWorks CO.,LTD. contains a denial-of-service (DoS) vulnerability.
GIGAPOD file servers (Appliance model and Software model) from TripodWorks CO.,LTD. provide two web interfaces. First, a user web interface via ports 80/443, and a second, an administrative web interface via port 8001. The administrative web interface uses a version of the Apache HTTP server which contains a flaw in handling HTTP requests (CVE-2011-3192). As a result, GIGAPOD contains a denial-of-service (DoS) vulnerability.
Teruo Yamada of IOS Corporation reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
References
▼ | Type | URL |
---|---|---|
JVN | http://jvn.jp/en/jp/JVN23809730/index.html | |
CVE | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5329 | |
NVD | https://nvd.nist.gov/vuln/detail/CVE-2014-5329 | |
Resource Management Errors(CWE-399) | https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html |
Impacted products
▼ | Vendor | Product |
---|---|---|
TripodWorks CO.,LTD | GIGAPOD |
{ "@rdf:about": "https://jvndb.jvn.jp/en/contents/2014/JVNDB-2014-000123.html", "dc:date": "2024-05-13T18:10+09:00", "dcterms:issued": "2014-10-16T13:51+09:00", "dcterms:modified": "2024-05-13T18:10+09:00", "description": "GIGAPOD provided by TripodWorks CO.,LTD. contains a denial-of-service (DoS) vulnerability.\r\n\r\nGIGAPOD file servers (Appliance model and Software model) from TripodWorks CO.,LTD. provide two web interfaces. First, a user web interface via ports 80/443, and a second, an administrative web interface via port 8001. The administrative web interface uses a version of the Apache HTTP server which contains a flaw in handling HTTP requests (CVE-2011-3192). As a result, GIGAPOD contains a denial-of-service (DoS) vulnerability.\r\n\r\nTeruo Yamada of IOS Corporation reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.", "link": "https://jvndb.jvn.jp/en/contents/2014/JVNDB-2014-000123.html", "sec:cpe": { "#text": "cpe:/a:tripodworks:gigapod", "@product": "GIGAPOD", "@vendor": "TripodWorks CO.,LTD", "@version": "2.2" }, "sec:cvss": { "@score": "7.8", "@severity": "High", "@type": "Base", "@vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "@version": "2.0" }, "sec:identifier": "JVNDB-2014-000123", "sec:references": [ { "#text": "http://jvn.jp/en/jp/JVN23809730/index.html", "@id": "JVN#23809730", "@source": "JVN" }, { "#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5329", "@id": "CVE-2014-5329", "@source": "CVE" }, { "#text": "https://nvd.nist.gov/vuln/detail/CVE-2014-5329", "@id": "CVE-2014-5329", "@source": "NVD" }, { "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html", "@id": "CWE-399", "@title": "Resource Management Errors(CWE-399)" } ], "title": "GIGAPOD vulnerable to denial-of-service (DoS)" }