Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-5217

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2011-5217
Last Modified 08 Nov 2012 12:00:00
Published 25 Oct 2012 01:55:03
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-5217

Summary

Directory traversal vulnerability in the PXE Mtftp service in Hitachi JP1/ServerConductor/DeploymentManager before 08-55 Japanese and before 08-51 English allows remote attackers to read arbitrary files via unknown vectors.

Vulnerable Systems

Application

  • Hitachi Jp1%2fserverconductor%2fdeploymentmanager 07-52

  • Hitachi Jp1%2fserverconductor%2fdeploymentmanager 07-56

  • Hitachi Jp1%2fserverconductor%2fdeploymentmanager 07-56-%2fg%28%2a2%29

  • Hitachi Jp1%2fserverconductor%2fdeploymentmanager 08-00

  • Hitachi Jp1%2fserverconductor%2fdeploymentmanager 08-06

  • Hitachi Jp1%2fserverconductor%2fdeploymentmanager 08-07

  • Hitachi Jp1%2fserverconductor%2fdeploymentmanager 08-50-%2fb

  • Hitachi Serverconductor%2fdeploymentmanager 01-00

  • Hitachi Serverconductor%2fdeploymentmanager 01-01

  • Hitachi Serverconductor%2fdeploymentmanager 06-00

  • Hitachi Serverconductor%2fdeploymentmanager 06-00-%2fa


References

XF - hitachi-jp1server-mtftp-directory-traversal(71832)

SECTRACK - 1026427

CONFIRM - http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS11-026/index.html

SECUNIA - 47221

OSVDB - 77739


Last Updated: 27 May 2016 11:01:16