All the vulnerabilites related to Hitachi, Ltd - ServerConductor/Deployment Manager
jvndb-2006-000983
Vulnerability from jvndb
Published
2008-05-21 00:00
Modified
2008-05-21 00:00
Severity ?
() - -
Summary
JP1 Request Handling Denial of Service Vulnerabilities
Details
Hitachi JP1 products fails to handle unexpected requests and data, which could be exploited to cause a denial of service condition.
Show details on JVN DB website


{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2006/JVNDB-2006-000983.html",
  "dc:date": "2008-05-21T00:00+09:00",
  "dcterms:issued": "2008-05-21T00:00+09:00",
  "dcterms:modified": "2008-05-21T00:00+09:00",
  "description": "Hitachi JP1 products fails to handle unexpected requests and data, which could be exploited to cause a denial of service condition.",
  "link": "https://jvndb.jvn.jp/en/contents/2006/JVNDB-2006-000983.html",
  "sec:cpe": [
    {
      "#text": "cpe:/a:hitachi:cm2_network_node_manager",
      "@product": "Cm2/Network Node Manager",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:job_management_partner_1_automatic_job_management_system_2",
      "@product": "Job Management Partner 1/Automatic Job Management System 2",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:job_management_partner_1_base",
      "@product": "Job Management Partner 1/Base",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:jp1%2fperformance_management",
      "@product": "JP1/Performance Management",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:jp1_automatic_job_management_system_2",
      "@product": "JP1/Automatic Job Management System 2",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:jp1_base",
      "@product": "JP1/Base",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:jp1_cm2_extensible_agent",
      "@product": "JP1/Cm2/Extensible Agent",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:jp1_cm2_hierarchical_agent",
      "@product": "JP1/Cm2/Hierarchical Agent",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:jp1_cm2_network_node_manager",
      "@product": "JP1/Cm2/Network Node Manager",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:jp1_cm2_operations_assist",
      "@product": "JP1/Cm2/Operations Assist",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:jp1_cm2_submanager",
      "@product": "JP1/Cm2/SubManager",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:jp1_file_access_control",
      "@product": "JP1/File Access Control",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:jp1_pfm_snmp_system_observer",
      "@product": "JP1/PFM/SNMP System Observer",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:jp1_security_integrated_manager",
      "@product": "JP1/Security Integrated Manager",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:jp1_serverconductor_blade_server_manager",
      "@product": "JP1/ServerConductor/Blade Server Manager",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:jp1_serverconductor_deployment_manager",
      "@product": "JP1/ServerConductor/Deployment Manager",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:jp1_serverconductor_server_manager",
      "@product": "JP1/ServerConductor/Server Manager",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:jp1_server_system_observer",
      "@product": "JP1/Server System Observer",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:serverconductor_blade_server_manager",
      "@product": "ServerConductor/Blade Server Manager",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:serverconductor_deployment_manager",
      "@product": "ServerConductor/Deployment Manager",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:serverconductor_server_manager",
      "@product": "ServerConductor/Server Manager",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:system_manager",
      "@product": "System Manager",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    }
  ],
  "sec:cvss": {
    "@score": "5.0",
    "@severity": "Medium",
    "@type": "Base",
    "@vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
    "@version": "2.0"
  },
  "sec:identifier": "JVNDB-2006-000983",
  "sec:references": [
    {
      "#text": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2068",
      "@id": "CVE-2006-2068",
      "@source": "CVE"
    },
    {
      "#text": "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-2068",
      "@id": "CVE-2006-2068",
      "@source": "NVD"
    },
    {
      "#text": "http://secunia.com/advisories/19841",
      "@id": "SA19841",
      "@source": "SECUNIA"
    },
    {
      "#text": "http://www.securityfocus.com/bid/17706",
      "@id": "17706",
      "@source": "BID"
    },
    {
      "#text": "http://xforce.iss.net/xforce/xfdb/26087",
      "@id": "26087",
      "@source": "XF"
    },
    {
      "#text": "http://www.frsirt.com/english/advisories/2006/1524",
      "@id": "FrSIRT/ADV-2006-1524",
      "@source": "FRSIRT"
    }
  ],
  "title": "JP1 Request Handling Denial of Service Vulnerabilities"
}

jvndb-2010-001545
Vulnerability from jvndb
Published
2010-06-29 15:35
Modified
2010-06-29 15:35
Severity ?
() - -
Summary
Forced Shutdown or Restart with JP1/ServerConductor/Deployment Manager
Details
JP1/ServerConductor/Deployment Manager's Client Service for DPM has a vulnerability which could cause a shutdown or restart of the client computer when receiving ill-formed data.
References
Show details on JVN DB website


{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-001545.html",
  "dc:date": "2010-06-29T15:35+09:00",
  "dcterms:issued": "2010-06-29T15:35+09:00",
  "dcterms:modified": "2010-06-29T15:35+09:00",
  "description": "JP1/ServerConductor/Deployment Manager\u0027s Client Service for DPM has a vulnerability which could cause a shutdown or restart of the client computer when receiving ill-formed data.",
  "link": "https://jvndb.jvn.jp/en/contents/2010/JVNDB-2010-001545.html",
  "sec:cpe": [
    {
      "#text": "cpe:/a:hitachi:jp1_serverconductor_deployment_manager",
      "@product": "JP1/ServerConductor/Deployment Manager",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:serverconductor_deployment_manager",
      "@product": "ServerConductor/Deployment Manager",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    }
  ],
  "sec:cvss": {
    "@score": "7.8",
    "@severity": "High",
    "@type": "Base",
    "@vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
    "@version": "2.0"
  },
  "sec:identifier": "JVNDB-2010-001545",
  "sec:references": {
    "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
    "@id": "CWE-noinfo",
    "@title": "No Mapping(CWE-noinfo)"
  },
  "title": "Forced Shutdown or Restart with JP1/ServerConductor/Deployment Manager"
}

jvndb-2011-000102
Vulnerability from jvndb
Published
2011-12-15 16:26
Modified
2011-12-20 18:14
Severity ?
() - -
Summary
Multiple vulnerabilities in products that use the Preboot Execution Environment (PXE) SDK
Details
Products that use the Preboot Execution Environment (PXE) SDK sample code provided by Intel contain multiple vulnerabilities. Products that use the PXE SDK sample code provided by Intel contain directory traversal and buffer overflow vulnerabilities. Nobuyuki Kanaya of Fujitsu Laboratories Ltd. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
Show details on JVN DB website


{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-000102.html",
  "dc:date": "2011-12-20T18:14+09:00",
  "dcterms:issued": "2011-12-15T16:26+09:00",
  "dcterms:modified": "2011-12-20T18:14+09:00",
  "description": "Products that use the Preboot Execution Environment (PXE) SDK sample code provided by Intel contain multiple vulnerabilities.\r\n\r\nProducts that use the PXE SDK sample code provided by Intel contain directory traversal and buffer overflow vulnerabilities.\r\n\r\nNobuyuki Kanaya of Fujitsu Laboratories Ltd. reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
  "link": "https://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-000102.html",
  "sec:cpe": [
    {
      "#text": "cpe:/a:fujitsu:systemcastwizard_lite",
      "@product": "SystemcastWizard Lite",
      "@vendor": "FUJITSU",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:jp1_serverconductor_deployment_manager",
      "@product": "JP1/ServerConductor/Deployment Manager",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:serverconductor_deployment_manager",
      "@product": "ServerConductor/Deployment Manager",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:nec:websam_deploymentmanager",
      "@product": "WebSAM DeploymentManager",
      "@vendor": "NEC Corporation",
      "@version": "2.2"
    }
  ],
  "sec:cvss": {
    "@score": "8.3",
    "@severity": "High",
    "@type": "Base",
    "@vector": "AV:A/AC:L/Au:N/C:C/I:C/A:C",
    "@version": "2.0"
  },
  "sec:identifier": "JVNDB-2011-000102",
  "sec:references": [
    {
      "#text": "https://jvn.jp/en/jp/JVN05255562/index.html",
      "@id": "JVN#05255562",
      "@source": "JVN"
    },
    {
      "#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0270",
      "@id": "CVE-2009-0270",
      "@source": "CVE"
    },
    {
      "#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0270",
      "@id": "CVE-2009-0270",
      "@source": "NVD"
    },
    {
      "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
      "@id": "CWE-119",
      "@title": "Buffer Errors(CWE-119)"
    },
    {
      "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
      "@id": "CWE-22",
      "@title": "Path Traversal(CWE-22)"
    }
  ],
  "title": "Multiple vulnerabilities in products that use the Preboot Execution Environment (PXE) SDK"
}

jvndb-2018-002257
Vulnerability from jvndb
Published
2018-04-05 10:22
Modified
2018-04-10 10:55
Severity ?
Summary
DoS Vulnerability in JP1/ServerConductor/Deployment Manager and Hitachi Compute Systems Manager
Details
A DoS Vulnerability was found in JP1/ServerConductor/Deployment Manager and Hitachi Compute Systems Manager (Deployment Manager Plug-in).
References
Show details on JVN DB website


{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2018/JVNDB-2018-002257.html",
  "dc:date": "2018-04-10T10:55+09:00",
  "dcterms:issued": "2018-04-05T10:22+09:00",
  "dcterms:modified": "2018-04-10T10:55+09:00",
  "description": "A DoS Vulnerability was found in JP1/ServerConductor/Deployment Manager and Hitachi Compute Systems Manager (Deployment Manager Plug-in).",
  "link": "https://jvndb.jvn.jp/en/contents/2018/JVNDB-2018-002257.html",
  "sec:cpe": [
    {
      "#text": "cpe:/a:hitachi:compute_systems_manager",
      "@product": "Hitachi Compute Systems Manager",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:jp1_serverconductor_deployment_manager",
      "@product": "JP1/ServerConductor/Deployment Manager",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    },
    {
      "#text": "cpe:/a:hitachi:serverconductor_deployment_manager",
      "@product": "ServerConductor/Deployment Manager",
      "@vendor": "Hitachi, Ltd",
      "@version": "2.2"
    }
  ],
  "sec:cvss": [
    {
      "@score": "7.8",
      "@severity": "High",
      "@type": "Base",
      "@vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
      "@version": "2.0"
    },
    {
      "@score": "7.5",
      "@severity": "High",
      "@type": "Base",
      "@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
      "@version": "3.0"
    }
  ],
  "sec:identifier": "JVNDB-2018-002257",
  "sec:references": {
    "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
    "@id": "CWE-noinfo",
    "@title": "No Mapping(CWE-noinfo)"
  },
  "title": "DoS Vulnerability in JP1/ServerConductor/Deployment Manager and Hitachi Compute Systems Manager"
}