Protect yourself against future threats.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 =========================================================================== AUSCERT Security Bulletin ASB-2012.0030 Multiple vulnerabilities in JP1/Cm2/Network Node Manager i 2 March 2012 =========================================================================== AusCERT Security Bulletin Summary --------------------------------- Product: JP1/Cm2/Network Node Manager i Operating System: Windows Linux variants HP-UX Solaris Impact/Access: Execute Arbitrary Code/Commands -- Remote/Unauthenticated Denial of Service -- Remote/Unauthenticated Resolution: Patch/Upgrade Member content until: Sunday, April 1 2012 OVERVIEW Multiple vulnerabilities have been identified in JP1/Cm2/Network Node Manager i. [1] IMPACT The vendor has provided the following description of the vulnerability: "Malicious remote users can exploit this vulnerability to disrupt services or execute arbitrary script." [1] MITIGATION All versions of JP1/Cm2/Network Node Manager i should upgrade to the latest version which is 09-50-03 for all listed platforms. [1] REFERENCES [1] Multiple vulnerabilities in JP1/Cm2/Network Node Manager i http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS12-009/index.html AusCERT has made every effort to ensure that the information contained in this document is accurate. However, the decision to use the information described is the responsibility of each user or organisation. The decision to follow or act on information or advice contained in this security bulletin is the responsibility of each user or organisation, and should be considered in accordance with your organisation's site policies and procedures. AusCERT takes no responsibility for consequences which may arise from following or acting on information or advice contained in this security bulletin. =========================================================================== Australian Computer Emergency Response Team The University of Queensland Brisbane Qld 4072 Internet Email: auscert@auscert.org.au Facsimile: (07) 3365 7031 Telephone: (07) 3365 4417 (International: +61 7 3365 4417) AusCERT personnel answer during Queensland business hours which are GMT+10:00 (AEST). On call after hours for member emergencies only. =========================================================================== -----BEGIN PGP SIGNATURE----- Comment: http://www.auscert.org.au/render.html?it=1967 iQIVAwUBT1AkHu4yVqjM2NGpAQJsXQ/9Eq9qBovf5N3+WkgvgqPKrUZND4vIsTxP l99hGalki7TX+ynsEhYBE2VQeBtN5Kr6P/NbwxVy3bptPm3oB4v9QqchbzpnOm+q KxLCFdG9sMScqNn0Dsa45c3hE3/IE0pxI44DD1vpCDpBHTr2iTTlTGjw6GlK+iOY it3kvPHzNAOnfPbYXl8phug1AzvQQQFxnTFWCgH32l9ryQ8Slqtn55QYqkn6LP+p wjnHJX0IG6VoAdZQNvZEn3VrBEbp9jwfwy+sTP+nopc/iWT1LYX2b8CicSQYz80G 6tLiS+ERESUe8rb7XxPuTyI0QGJGaJUiHj4LS8eiQOdEVxoZ4VTR0FcdueM41Tn7 IYNFIDc1MQ5jtgMVX2UkishX4fRyGvpFDmak5SmMixsCEs5gWnYNye/qlGW+uA3u QOioaglEa4SkfQXu3uJGssoRdC+zu0sM5dHNdrzX0bZx911CICCgBQ0+mxZ4v2+X zAOdiYlo5SNx9l3CEeYkzXM2xiWxExBPCPKg4AD9PZ3/Tc1cDc57CDioAysrzHjB cDXjUHrEQSXuLjXJLz0YODv9YLKyRcLlS/ZuQCaqFqjKpM1t5iWqM0Cyal2uElP9 MiG7Gk5nvGQDIOaHt8zZSJXlhKQjskCRxoGPSfH5BMzWgURBjiVrVO15AbTrEpgs F/fiLqxovbw= =bX4x -----END PGP SIGNATURE-----