Search criteria
7 vulnerabilities found for JP1/File Transmission Server/FTP by Hitachi, Ltd
JVNDB-2014-001594
Vulnerability from jvndb - Published: 2014-03-11 16:33 - Updated:2015-03-03 16:59Summary
JP1/File Transmission Server / FTP vulnerable to access control violation
Details
JP1/File Transmission Server/FTP has a vulnerability where an FTP client with limited access rights can bypass the access control and access arbitrary directories on the FTP server when enabling the directory access control function.
References
| Type | URL | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2014/JVNDB-2014-001594.html",
"dc:date": "2015-03-03T16:59+09:00",
"dcterms:issued": "2014-03-11T16:33+09:00",
"dcterms:modified": "2015-03-03T16:59+09:00",
"description": "JP1/File Transmission Server/FTP has a vulnerability where an FTP client with limited access rights can bypass the access control and access arbitrary directories on the FTP server when enabling the directory access control function.",
"link": "https://jvndb.jvn.jp/en/contents/2014/JVNDB-2014-001594.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:jp1_file_transmission_server_ftp",
"@product": "JP1/File Transmission Server/FTP",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": {
"@score": "6.5",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2014-001594",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "JP1/File Transmission Server / FTP vulnerable to access control violation"
}
JVNDB-2012-005201
Vulnerability from jvndb - Published: 2012-11-05 17:58 - Updated:2012-11-26 18:01Summary
Multiple Vulnerabilities in Hitachi JP1/File Transmission Server/FTP
Details
Hitachi JP1/File Transmission Server/FTP contains multiple vulnerabilities.
* FTP Bounce Attack in PASV mode
* Buffer overflow at file transmission
* Defect of the account information check in user authentication
References
| Type | URL | ||||
|---|---|---|---|---|---|
|
|||||
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-005201.html",
"dc:date": "2012-11-26T18:01+09:00",
"dcterms:issued": "2012-11-05T17:58+09:00",
"dcterms:modified": "2012-11-26T18:01+09:00",
"description": "Hitachi JP1/File Transmission Server/FTP contains multiple vulnerabilities.\r\n\r\n * FTP Bounce Attack in PASV mode\r\n * Buffer overflow at file transmission\r\n * Defect of the account information check in user authentication",
"link": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-005201.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:jp1_file_transmission_server_ftp",
"@product": "JP1/File Transmission Server/FTP",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": {
"@score": "9.0",
"@severity": "High",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:S/C:C/I:C/A:C",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2012-005201",
"sec:references": {
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
},
"title": "Multiple Vulnerabilities in Hitachi JP1/File Transmission Server/FTP"
}
JVNDB-2009-001967
Vulnerability from jvndb - Published: 2009-09-14 10:31 - Updated:2009-09-14 10:31Summary
Multiple Vulnerabilities in Hitachi JP1/File Transmission Server/FTP
Details
Hitachi JP1/File Transmission Server/FTP contains multiple vulnerabilities that could allow an attacker to execute arbitrary commands.
References
| Type | URL | |
|---|---|---|
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-001967.html",
"dc:date": "2009-09-14T10:31+09:00",
"dcterms:issued": "2009-09-14T10:31+09:00",
"dcterms:modified": "2009-09-14T10:31+09:00",
"description": "Hitachi JP1/File Transmission Server/FTP contains multiple vulnerabilities that could allow an attacker to execute arbitrary commands.",
"link": "https://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-001967.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:jp1_file_transmission_server_ftp",
"@product": "JP1/File Transmission Server/FTP",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": {
"@score": "10.0",
"@severity": "High",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2009-001967",
"sec:references": [
{
"#text": "https://www.cve.org/CVERecord?id=CVE-2009-3169",
"@id": "CVE-2009-3169",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2009-3169",
"@id": "CVE-2009-3169",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-noinfo",
"@title": "No Mapping(CWE-noinfo)"
}
],
"title": "Multiple Vulnerabilities in Hitachi JP1/File Transmission Server/FTP"
}
JVNDB-2008-001585
Vulnerability from jvndb - Published: 2008-09-05 12:24 - Updated:2008-09-05 12:24Summary
Hitachi JP1/File Transmission Server/FTP Unauthorized File Permission Change Vulnerability
Details
Hitachi JP1/File Transmission Server/FTP has a vulnerability which allows unauthorized users to change file permissions.
References
| Type | URL | |||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2008/JVNDB-2008-001585.html",
"dc:date": "2008-09-05T12:24+09:00",
"dcterms:issued": "2008-09-05T12:24+09:00",
"dcterms:modified": "2008-09-05T12:24+09:00",
"description": "Hitachi JP1/File Transmission Server/FTP has a vulnerability which allows unauthorized users to change file permissions.",
"link": "https://jvndb.jvn.jp/en/contents/2008/JVNDB-2008-001585.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:jp1_file_transmission_server_ftp",
"@product": "JP1/File Transmission Server/FTP",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": {
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2008-001585",
"sec:references": [
{
"#text": "http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-001585.html",
"@id": "JVNDB-2008-001585",
"@source": "JVNDB_Ja"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-264",
"@title": "Permissions(CWE-264)"
}
],
"title": "Hitachi JP1/File Transmission Server/FTP Unauthorized File Permission Change Vulnerability"
}
JVNDB-2008-001584
Vulnerability from jvndb - Published: 2008-09-05 12:23 - Updated:2008-09-05 12:23Summary
Hitachi JP1/File Transmission Server/FTP Transmission Failure Problem
Details
Hitachi JP1/File Transmission Server/FTP has a problem where file transmission fails due to the termination of the connection or failure of getting a response from the server when executing FTP commands with certain argument(s).
References
| Type | URL | |||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2008/JVNDB-2008-001584.html",
"dc:date": "2008-09-05T12:23+09:00",
"dcterms:issued": "2008-09-05T12:23+09:00",
"dcterms:modified": "2008-09-05T12:23+09:00",
"description": "Hitachi JP1/File Transmission Server/FTP has a problem where file transmission fails due to the termination of the connection or failure of getting a response from the server when executing FTP commands with certain argument(s).",
"link": "https://jvndb.jvn.jp/en/contents/2008/JVNDB-2008-001584.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:jp1_file_transmission_server_ftp",
"@product": "JP1/File Transmission Server/FTP",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": {
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2008-001584",
"sec:references": [
{
"#text": "http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-001584.html",
"@id": "JVNDB-2008-001584",
"@source": "JVNDB_Ja"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-20",
"@title": "Improper Input Validation(CWE-20)"
}
],
"title": "Hitachi JP1/File Transmission Server/FTP Transmission Failure Problem"
}
JVNDB-2007-000999
Vulnerability from jvndb - Published: 2008-05-21 00:00 - Updated:2008-05-21 00:00Summary
Hitachi JP1/File Transmission Server/FTP Authentication Bypass Vulnerability
Details
Hitachi JP1/File Transmission Server/FTP contains a vulnerability which could be exploited to bypass authentication.
References
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2007/JVNDB-2007-000999.html",
"dc:date": "2008-05-21T00:00+09:00",
"dcterms:issued": "2008-05-21T00:00+09:00",
"dcterms:modified": "2008-05-21T00:00+09:00",
"description": "Hitachi JP1/File Transmission Server/FTP contains a vulnerability which could be exploited to bypass authentication.",
"link": "https://jvndb.jvn.jp/en/contents/2007/JVNDB-2007-000999.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:jp1_file_transmission_server_ftp",
"@product": "JP1/File Transmission Server/FTP",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": {
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2007-000999",
"sec:references": [
{
"#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6145",
"@id": "CVE-2007-6145",
"@source": "CVE"
},
{
"#text": "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6145",
"@id": "CVE-2007-6145",
"@source": "NVD"
},
{
"#text": "http://secunia.com/advisories/27735",
"@id": "SA27735",
"@source": "SECUNIA"
},
{
"#text": "http://www.securityfocus.com/bid/26530",
"@id": "26530",
"@source": "BID"
},
{
"#text": "http://xforce.iss.net/xforce/xfdb/38610",
"@id": "38610",
"@source": "XF"
},
{
"#text": "http://www.frsirt.com/english/advisories/2007/3957",
"@id": "FrSIRT/ADV-2007-3957",
"@source": "FRSIRT"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-287",
"@title": "Improper Authentication(CWE-287)"
}
],
"title": "Hitachi JP1/File Transmission Server/FTP Authentication Bypass Vulnerability"
}
JVNDB-2007-001000
Vulnerability from jvndb - Published: 2008-05-21 00:00 - Updated:2008-05-21 00:00Summary
Hitachi JP1/File Transmission Server/FTP Denial of Service Vulnerability
Details
Hitachi JP1/File Transmission Server/FTP does not handle certain FTP command arguments properly, which could trigger Denial of Service (DoS) incidents.
References
| Type | URL | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2007/JVNDB-2007-001000.html",
"dc:date": "2008-05-21T00:00+09:00",
"dcterms:issued": "2008-05-21T00:00+09:00",
"dcterms:modified": "2008-05-21T00:00+09:00",
"description": "Hitachi JP1/File Transmission Server/FTP does not handle certain FTP command arguments properly, which could trigger Denial of Service (DoS) incidents.",
"link": "https://jvndb.jvn.jp/en/contents/2007/JVNDB-2007-001000.html",
"sec:cpe": {
"#text": "cpe:/a:hitachi:jp1_file_transmission_server_ftp",
"@product": "JP1/File Transmission Server/FTP",
"@vendor": "Hitachi, Ltd",
"@version": "2.2"
},
"sec:cvss": {
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2007-001000",
"sec:references": [
{
"#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6146",
"@id": "CVE-2007-6146",
"@source": "CVE"
},
{
"#text": "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6146",
"@id": "CVE-2007-6146",
"@source": "NVD"
},
{
"#text": "http://secunia.com/advisories/27735",
"@id": "SA27735",
"@source": "SECUNIA"
},
{
"#text": "http://www.securityfocus.com/bid/26542",
"@id": "26542",
"@source": "BID"
},
{
"#text": "http://www.frsirt.com/english/advisories/2007/3957",
"@id": "FrSIRT/ADV-2007-3957",
"@source": "FRSIRT"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-20",
"@title": "Improper Input Validation(CWE-20)"
}
],
"title": "Hitachi JP1/File Transmission Server/FTP Denial of Service Vulnerability"
}