CVE-2009-4776

EPSS 1.34%
Published 21.04.2010 14:30:00
Last modified 11.04.2025 00:51:21
Source cve@mitre.org
Teams watchlist Login
Open Login

Buffer overflow in Hitachi Cosminexus V4 through V8, Processing Kit for XML, and Developer's Kit for Java, as used in products such as uCosminexus, Electronic Form Workflow, Groupmax, and IBM XL C/C++ Enterprise Edition 7 and 8, allows remote attackers to have an unknown impact via vectors related to the use of GIF image processing APIs by a Java application, and a different issue from CVE-2007-3794.

Affected products Warnungen 0 Metrics 2 CWE 1 References 8

Data is provided by the National Vulnerability Database (NVD)

Hitachi ≫ Ucosminexus Application Server Version06-70 Update- Editionenterprise

Hitachi ≫ Ucosminexus Application Server Version06-70 Update- Editionstandard

Hitachi ≫ Ucosminexus Application Server Version06-70f Update- Editionenterprise

Hitachi ≫ Ucosminexus Application Server Version06-70f Update- Editionstandard

Hitachi ≫ Ucosminexus Application Server Version06-71 Update- Editionenterprise

Hitachi ≫ Ucosminexus Application Server Version06-71 Update- Editionstandard

Hitachi ≫ Ucosminexus Application Server Version06-72 Update- Editionenterprise

Hitachi ≫ Ucosminexus Application Server Version06-72 Update- Editionstandard

Hitachi ≫ Ucosminexus Application Server Version6.7 Update- Editionenterprise

Hitachi ≫ Ucosminexus Application Server Version6.7 Update- Editionstandard

Hitachi ≫ Ucosminexus Application Server Version7 Update- Editionenterprise

Hitachi ≫ Ucosminexus Application Server Version7 Update- Editionstandard

Hitachi ≫ Ucosminexus Application Server Version07-00 Update- Editionenterprise

Hitachi ≫ Ucosminexus Application Server Version07-00 Update- Editionstandard

Hitachi ≫ Ucosminexus Application Server Version07-10 Update- Editionenterprise

Hitachi ≫ Ucosminexus Application Server Version07-10 Update- Editionstandard

Hitachi ≫ Ucosminexus Application Server Version07-60 Update- Editionenterprise

Hitachi ≫ Ucosminexus Application Server Version07-60 Update- Editionstandard

Hitachi ≫ Ucosminexus Application Server Version8 Update- Editionenterprise

Hitachi ≫ Ucosminexus Application Server Version8 Update- Editionstandard

Hitachi ≫ Ucosminexus Application Server Version08-00 Update- Editionenterprise

Hitachi ≫ Ucosminexus Application Server Version08-00 Update- Editionstandard

Hitachi ≫ Ucosminexus Client Version06-70

Hitachi ≫ Ucosminexus Client Version06-71

Hitachi ≫ Ucosminexus Client Version07-00

Hitachi ≫ Ucosminexus Client Version07-60

Hitachi ≫ Ucosminexus Client Version8

Hitachi ≫ Ucosminexus Client Version08-00

Hitachi ≫ Ucosminexus Collaboration Version06-20 Update- Editionserver

Hitachi ≫ Ucosminexus Collaboration Version06-30 Update- Editionserver

Hitachi ≫ Ucosminexus Collaboration Version06-35 Update- Editionserver

Hitachi ≫ Ucosminexus Developer Version6 Update- Editionpro

Hitachi ≫ Ucosminexus Developer Version6 Update- Editionstandard

Hitachi ≫ Ucosminexus Developer Version06-70 Update- Editionlight

Hitachi ≫ Ucosminexus Developer Version06-70 Update- Editionpro

Hitachi ≫ Ucosminexus Developer Version06-70 Update- Editionstandard

Hitachi ≫ Ucosminexus Developer Version06-71 Update- Editionlight

Hitachi ≫ Ucosminexus Developer Version06-71 Update- Editionpro

Hitachi ≫ Ucosminexus Developer Version06-71 Update- Editionstandard

Hitachi ≫ Ucosminexus Developer Version6.7 Update- Editionlight

Hitachi ≫ Ucosminexus Developer Version6.7 Update- Editionpro

Hitachi ≫ Ucosminexus Developer Version6.7 Update- Editionstandard

Hitachi ≫ Ucosminexus Developer Version7 Update- Editionlight

Hitachi ≫ Ucosminexus Developer Version7 Update- Editionpro

Hitachi ≫ Ucosminexus Developer Version7 Update- Editionstandard

Hitachi ≫ Ucosminexus Developer Version07-00 Update- Editionpro

Hitachi ≫ Ucosminexus Developer Version07-00 Update- Editionstandard

Hitachi ≫ Ucosminexus Developer Version07-60 Update- Editionpro

Hitachi ≫ Ucosminexus Developer Version07-60 Update- Editionstandard

Hitachi ≫ Ucosminexus Developer Version8 Update- Editionlight

Hitachi ≫ Ucosminexus Developer Version8 Update- Editionpro

Hitachi ≫ Ucosminexus Developer Version8 Update- Editionstandard

Hitachi ≫ Ucosminexus Developer Version08-00 Update- Editionpro

Hitachi ≫ Ucosminexus Developer Version08-00 Update- Editionstandard

Hitachi ≫ Ucosminexus Operator Version6.7

Hitachi ≫ Ucosminexus Operator Version7

Hitachi ≫ Ucosminexus Operator Version07-00

Hitachi ≫ Ucosminexus Operator Version07-60

Hitachi ≫ Ucosminexus Operator Version8

Hitachi ≫ Ucosminexus Service Architect Version6.7

Hitachi ≫ Ucosminexus Service Architect Version7

Hitachi ≫ Ucosminexus Service Architect Version07-00

Hitachi ≫ Ucosminexus Service Architect Version07-60

Hitachi ≫ Ucosminexus Service Architect Version8

Hitachi ≫ Ucosminexus Service Architect Version08-00

Hitachi ≫ Ucosminexus Service Platform Version6.7

Hitachi ≫ Ucosminexus Service Platform Version7

Hitachi ≫ Ucosminexus Service Platform Version07-00

Hitachi ≫ Ucosminexus Service Platform Version07-10

Hitachi ≫ Ucosminexus Service Platform Version07-60

Hitachi ≫ Ucosminexus Service Platform Version8

Hitachi ≫ Ucosminexus Service Platform Version08-00

Hitachi ≫ Processing Kit For Xml Version01-00

Hitachi ≫ Processing Kit For Xml Version01-05

Hitachi ≫ Processing Kit For Xml Version01-07

Hitachi ≫ Processing Kit For Xml Version02-00

Hitachi ≫ Processing Kit For Xml Version02-05

Hitachi ≫ Groupmax Collaboration Version07-20 Update- Editionserver

Hitachi ≫ Groupmax Collaboration Version07-30 Update- Editionserver

Hitachi ≫ Groupmax Collaboration Version07-35 Update- Editionserver

Hitachi ≫ Electronic Form Workflow Set Version07-50

Hitachi ≫ Electronic Form Workflow Set Version07-60

Hitachi ≫ Electronic Form Workflow-standard Set Version06-70

Hitachi ≫ Electronic Form Workflow-standard Set Version07-00

Hitachi ≫ Electronic Form Workflow-standard Set Version07-10

Hitachi ≫ Electronic Form Workflow-standard Set Version07-11

Hitachi ≫ Electronic Form Workflow-standard Set Version07-20

Hitachi ≫ Electronic Form Workflow-professional Set Version07-50

Hitachi ≫ Electronic Form Workflow-professional Library Set Version06-70

Hitachi ≫ Electronic Form Workflow-professional Library Set Version07-00

Hitachi ≫ Electronic Form Workflow-professional Library Set Version07-10

Hitachi ≫ Electronic Form Workflow-professional Library Set Version07-11

Hitachi ≫ Electronic Form Workflow-professional Library Set Version07-20

Hitachi ≫ Electronic Form Workflow-developer Set Version07-50

Hitachi ≫ Electronic Form Workflow-developer Set Version07-60

Hitachi ≫ Electronic Form Workflow-developer Client Set Version06-70

Hitachi ≫ Electronic Form Workflow-developer Client Set Version07-00

Hitachi ≫ Electronic Form Workflow-developer Client Set Version07-10

Hitachi ≫ Electronic Form Workflow-developer Client Set Version07-11

Hitachi ≫ Electronic Form Workflow-developer Client Set Version07-20

Hitachi ≫ Cosminexus Application Server Version5

Hitachi ≫ Cosminexus Application Server Version05-00

Hitachi ≫ Cosminexus Application Server Version05-01

Hitachi ≫ Cosminexus Application Server Version05-02

Hitachi ≫ Cosminexus Application Server Version05-05

Hitachi ≫ Cosminexus Application Server Version6

Hitachi ≫ Cosminexus Application Server Version6 Update- Editionenterprise

Hitachi ≫ Cosminexus Application Server Version06-00 Update- Editionenterprise

Hitachi ≫ Cosminexus Application Server Version06-00 Update- Editionstandard

Hitachi ≫ Cosminexus Application Server Version06-02 Update- Editionenterprise

Hitachi ≫ Cosminexus Application Server Version06-02 Update- Editionstandard

Hitachi ≫ Cosminexus Application Server Version06-50 Update- Editionenterprise

Hitachi ≫ Cosminexus Application Server Version06-50 Update- Editionstandard

Hitachi ≫ Cosminexus Application Server Version06-51 Update- Editionenterprise

Hitachi ≫ Cosminexus Application Server Version06-51 Update- Editionstandard

Hitachi ≫ Cosminexus Client Version06-00

Hitachi ≫ Cosminexus Client Version06-02

Hitachi ≫ Cosminexus Client Version06-50

Hitachi ≫ Cosminexus Client Version06-51

Hitachi ≫ Cosminexus Studio Version04-00 Update- Editionstandard

Hitachi ≫ Cosminexus Studio Version04-00 Update- Editionweb

Hitachi ≫ Cosminexus Studio Version04-01 Update- Editionstandard

Hitachi ≫ Cosminexus Studio Version04-01 Update- Editionweb

Hitachi ≫ Cosminexus Studio Version05-00

Hitachi ≫ Cosminexus Studio Version05-01

Hitachi ≫ Cosminexus Studio Version05-05

Hitachi ≫ Cosminexus Server Version04-00 Update- Editionstandard

Hitachi ≫ Cosminexus Server Version04-00 Update- Editionweb

Hitachi ≫ Cosminexus Server Version04-01 Update- Editionstandard

Hitachi ≫ Cosminexus Server Version04-01 Update- Editionweb

Hitachi ≫ Cosminexus Developer Version5

Hitachi ≫ Cosminexus Developer Version05-00

Hitachi ≫ Cosminexus Developer Version05-01

Hitachi ≫ Cosminexus Developer Version05-05

Hitachi ≫ Cosminexus Developer Version6 Update- Editionlight

Hitachi ≫ Cosminexus Developer Version6 Update- Editionpro

Hitachi ≫ Cosminexus Developer Version6 Update- Editionstandard

Hitachi ≫ Cosminexus Developer Version06-00 Update- Editionlight

Hitachi ≫ Cosminexus Developer Version06-00 Update- Editionpro

Hitachi ≫ Cosminexus Developer Version06-00 Update- Editionstandard

Hitachi ≫ Cosminexus Developer Version06-02 Update- Editionlight

Hitachi ≫ Cosminexus Developer Version06-02 Update- Editionpro

Hitachi ≫ Cosminexus Developer Version06-02 Update- Editionstandard

Hitachi ≫ Cosminexus Developer Version06-50 Update- Editionlight

Hitachi ≫ Cosminexus Developer Version06-50 Update- Editionpro

Hitachi ≫ Cosminexus Developer Version06-50 Update- Editionstandard

Hitachi ≫ Cosminexus Developer Version06-51 Update- Editionlight

Hitachi ≫ Cosminexus Developer Version06-51 Update- Editionpro

Hitachi ≫ Cosminexus Developer Version06-51 Update- Editionstandard

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.34%	0.782

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9.3	8.6	10	AV:N/AC:M/Au:N/C:C/I:C/A:C

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

http://osvdb.org/57834

http://secunia.com/advisories/36622

Vendor Advisory

http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS09-014/index.html

http://www.securityfocus.com/bid/36309

http://www.vupen.com/english/advisories/2009/2574

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2009-4776

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2009-4776

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2009-4776

EUVD