Page 2 of 9 results (0.005 seconds)

CVSS: 10.0EPSS: 4%CPEs: 56EXPL: 0

Multiple buffer overflows in the image-processing APIs in Cosminexus Developer's Kit for Java in Cosminexus 4 through 7 allow remote attackers to cause a denial of service or execute arbitrary code via unspecified vectors. Múltiples desbordamientos de búfer en las APIs image-processing del Kit para Java: Cosminexus Developer's de Cosminexus 4 hasta 7 permiten a atacantes remotos provocar una denegación de servicio ó ejecutar código de su elección mediante vectores no especificados. • http://osvdb.org/37857 http://secunia.com/advisories/26538 http://www.hitachi-support.com/security_e/vuls_e/HS07-028_e/index-e.html http://www.vupen.com/english/advisories/2007/3034 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 4.4EPSS: 0%CPEs: 95EXPL: 0

Cosminexus Manager in Cosminexus Application Server 06-50 and later might assign the wrong user's group permissions to logical J2EE server processes, which allows local users to gain privileges. Cosminexus Manager en Cosminexus Application Server 06-50 y posteriores podrían asignar los permisos de grupos de usuario erroneamente a los procesos del servidor lógico J2EE, el cual permite a usuarios locales ganar privilegios. • http://osvdb.org/37854 http://secunia.com/advisories/26589 http://www.hitachi-support.com/security_e/vuls_e/HS07-025_e/index-e.html http://www.securityfocus.com/bid/25434 https://exchange.xforce.ibmcloud.com/vulnerabilities/36245 • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 4.6EPSS: 0%CPEs: 95EXPL: 0

Cosminexus Manager in Cosminexus Application Server 07-00 and later might assign the wrong user's group permissions to logical user server processes, which allows local users to gain privileges. Cosminexus Manager en Cosminexus Application Server 07-00 y posteriores podrían asignar permisos de grupos de usuarios de forma incorrecta a procesos del servidor de lógica de usuario, el cual permite a usuarios locales ganar privilegios. • http://osvdb.org/37855 http://secunia.com/advisories/26589 http://www.hitachi-support.com/security_e/vuls_e/HS07-025_e/index-e.html http://www.securityfocus.com/bid/25434 https://exchange.xforce.ibmcloud.com/vulnerabilities/36245 • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 10.0EPSS: 0%CPEs: 125EXPL: 0

Buffer overflow in Hitachi Cosminexus V4 through V7, Processing Kit for XML before 20070511, Developer's Kit for Java before 20070312, and third-party products that use this software, allows attackers to have an unknown impact via certain GIF images, related to use of GIF image processing APIs by a Java application. Desbordamiento de búfer en Hitachi Cosminexus V4 hasta V7, Processing Kit para XML versiones anteriores a 20070511, Developer's Kit para Java versiones anteriores a 20070312, y productos de terceras partes que utilizan este software, permite a atacantes remotos tener un impacto desconocido mediante imágenes GIF determinadas, relativas al uso de de APIs de procesamiento de imágenes GIF por una aplicación JAVA. • http://osvdb.org/37851 http://secunia.com/advisories/26025 http://www.hitachi-support.com/security_e/vuls_e/HS07-018_e/index-e.html http://www.securityfocus.com/bid/24905 http://www.vupen.com/english/advisories/2007/2534 •