Buffer Overflow in Hitachi Cosminexus Versions V4 to V8 and Related Java Products
CVE-2009-4776

Currently unrated

Key Information:

Vendor: Hitachi
Status: Ucosminexus Application Server; Ucosminexus Developer; Ucosminexus Service Architect; Ucosminexus Operator
Vendor: CVE Published:; 21 April 2010

Summary

A buffer overflow vulnerability exists in Hitachi Cosminexus, impacting versions V4 through V8, along with its Processing Kit for XML and Developer's Kit for Java. This vulnerability allows remote attackers to exploit GIF image processing APIs utilized by Java applications, potentially leading to unauthorized actions. Products such as uCosminexus, Electronic Form Workflow, Groupmax, and IBM XL C/C++ Enterprise Edition versions 7 and 8 are also affected. The issue is distinct from other previously identified vulnerabilities.

References

http://www.hitachi.co.jp/Prod/comp/soft1/global/security/...

x_refsource_CONFIRM

http://osvdb.org/57834

vdb-entryx_refsource_OSVDB

http://www.securityfocus.com/bid/36309

vdb-entryx_refsource_BID

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Apr 21, 2010