Description
Buffer overflow in Hitachi Cosminexus V4 through V8, Processing Kit for XML, and Developer's Kit for Java, as used in products such as uCosminexus, Electronic Form Workflow, Groupmax, and IBM XL C/C++ Enterprise Edition 7 and 8, allows remote attackers to have an unknown impact via vectors related to the use of GIF image processing APIs by a Java application, and a different issue from CVE-2007-3794.
References (5)
Core 5
Core References
Various Sources x_refsource_confirm
http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS09-014/index.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/57834
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/36309
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/36622
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2009/2574
Scores
EPSS
0.0134
EPSS Percentile
80.3%
Details
CWE
CWE-119
Status
published
Products (35)
hitachi/cosminexus\/opentp1_web_web_front-endset
01-00
hitachi/cosminexus\/opentp1_web_web_front-endset
01-00-\/b
hitachi/cosminexus\/opentp1_web_web_front-endset
01-01
hitachi/cosminexus\/opentp1_web_web_front-endset
01-01-\/c
hitachi/cosminexus\/opentp1_web_web_front-endset
02-00
hitachi/cosminexus\/opentp1_web_web_front-endset
02-00-\/a
hitachi/cosminexus\/opentp1_web_web_front-endset
02-50
hitachi/cosminexus\/opentp1_web_web_front-endset
02-50-\/a
hitachi/cosminexus_application_server
5
hitachi/cosminexus_application_server
05-00
... and 25 more
Published
Apr 21, 2010
Tracked Since
Feb 18, 2026