Vulnerability Details CVE-2009-4776
Buffer overflow in Hitachi Cosminexus V4 through V8, Processing Kit for XML, and Developer's Kit for Java, as used in products such as uCosminexus, Electronic Form Workflow, Groupmax, and IBM XL C/C++ Enterprise Edition 7 and 8, allows remote attackers to have an unknown impact via vectors related to the use of GIF image processing APIs by a Java application, and a different issue from CVE-2007-3794.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.013
EPSS Ranking 78.9%
CVSS Severity
CVSS v2 Score 9.3
References
- http://osvdb.org/57834
- http://secunia.com/advisories/36622
- http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS09-014/index.html
- http://www.securityfocus.com/bid/36309
- http://www.vupen.com/english/advisories/2009/2574
- http://osvdb.org/57834
- http://secunia.com/advisories/36622
- http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS09-014/index.html
- http://www.securityfocus.com/bid/36309
- http://www.vupen.com/english/advisories/2009/2574
Products affected by CVE-2009-4776
-
cpe:2.3:a:hitachi:cosminexus/opentp1_web_web_front-endset:01-00
-
cpe:2.3:a:hitachi:cosminexus/opentp1_web_web_front-endset:01-00-/b
-
cpe:2.3:a:hitachi:cosminexus/opentp1_web_web_front-endset:01-01
-
cpe:2.3:a:hitachi:cosminexus/opentp1_web_web_front-endset:01-01-/c
-
cpe:2.3:a:hitachi:cosminexus/opentp1_web_web_front-endset:02-00
-
cpe:2.3:a:hitachi:cosminexus/opentp1_web_web_front-endset:02-00-/a
-
cpe:2.3:a:hitachi:cosminexus/opentp1_web_web_front-endset:02-50
-
cpe:2.3:a:hitachi:cosminexus/opentp1_web_web_front-endset:02-50-/a
-
cpe:2.3:a:hitachi:cosminexus_application_server:05-00
-
cpe:2.3:a:hitachi:cosminexus_application_server:05-00-/i
-
cpe:2.3:a:hitachi:cosminexus_application_server:05-00-/s
-
cpe:2.3:a:hitachi:cosminexus_application_server:05-01
-
cpe:2.3:a:hitachi:cosminexus_application_server:05-01-/l
-
cpe:2.3:a:hitachi:cosminexus_application_server:05-02
-
cpe:2.3:a:hitachi:cosminexus_application_server:05-02-/e
-
cpe:2.3:a:hitachi:cosminexus_application_server:05-05
-
cpe:2.3:a:hitachi:cosminexus_application_server:05-05-/i
-
cpe:2.3:a:hitachi:cosminexus_application_server:05-05-/o
-
cpe:2.3:a:hitachi:cosminexus_application_server:05-05-/p
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-00
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-00-/a
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-00-/b
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-00-/e
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-00-/i
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-02
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-02-/d
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-02-/f
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-02-/g
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-50
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-50-/b
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-50-/c
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-50-/e
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-50-/f
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-50-/i
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-51
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-51-/b
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-51-/e
-
cpe:2.3:a:hitachi:cosminexus_application_server:06-51-/k
-
cpe:2.3:a:hitachi:cosminexus_application_server:5
-
cpe:2.3:a:hitachi:cosminexus_application_server:6
-
cpe:2.3:a:hitachi:cosminexus_client:06-00
-
cpe:2.3:a:hitachi:cosminexus_client:06-00-/i
-
cpe:2.3:a:hitachi:cosminexus_client:06-02
-
cpe:2.3:a:hitachi:cosminexus_client:06-02-/g
-
cpe:2.3:a:hitachi:cosminexus_client:06-50
-
cpe:2.3:a:hitachi:cosminexus_client:06-50-/f
-
cpe:2.3:a:hitachi:cosminexus_client:06-51
-
cpe:2.3:a:hitachi:cosminexus_client:06-51-/k
-
cpe:2.3:a:hitachi:cosminexus_developer:05-00
-
cpe:2.3:a:hitachi:cosminexus_developer:05-00-/i
-
cpe:2.3:a:hitachi:cosminexus_developer:05-01
-
cpe:2.3:a:hitachi:cosminexus_developer:05-01-/l
-
cpe:2.3:a:hitachi:cosminexus_developer:05-05
-
cpe:2.3:a:hitachi:cosminexus_developer:05-05-/p
-
cpe:2.3:a:hitachi:cosminexus_developer:06-00
-
cpe:2.3:a:hitachi:cosminexus_developer:06-00-/i
-
cpe:2.3:a:hitachi:cosminexus_developer:06-02
-
cpe:2.3:a:hitachi:cosminexus_developer:06-02-/g
-
cpe:2.3:a:hitachi:cosminexus_developer:06-50
-
cpe:2.3:a:hitachi:cosminexus_developer:06-50-/f
-
cpe:2.3:a:hitachi:cosminexus_developer:06-51
-
cpe:2.3:a:hitachi:cosminexus_developer:06-51-/k
-
cpe:2.3:a:hitachi:cosminexus_developer:5
-
cpe:2.3:a:hitachi:cosminexus_developer:6
-
cpe:2.3:a:hitachi:cosminexus_server:04-00
-
cpe:2.3:a:hitachi:cosminexus_server:04-00-/a
-
cpe:2.3:a:hitachi:cosminexus_server:04-01
-
cpe:2.3:a:hitachi:cosminexus_server:04-01-/a
-
cpe:2.3:a:hitachi:cosminexus_studio:04-00
-
cpe:2.3:a:hitachi:cosminexus_studio:04-00-/a
-
cpe:2.3:a:hitachi:cosminexus_studio:04-01
-
cpe:2.3:a:hitachi:cosminexus_studio:04-01-/a
-
cpe:2.3:a:hitachi:cosminexus_studio:05-00
-
cpe:2.3:a:hitachi:cosminexus_studio:05-00-/i
-
cpe:2.3:a:hitachi:cosminexus_studio:05-01
-
cpe:2.3:a:hitachi:cosminexus_studio:05-01-/l
-
cpe:2.3:a:hitachi:cosminexus_studio:05-05
-
cpe:2.3:a:hitachi:cosminexus_studio:05-05-/p
-
cpe:2.3:a:hitachi:developer's_kit_for_java:-
-
cpe:2.3:a:hitachi:electronic_form_workflow-developer_client_set:06-70
-
cpe:2.3:a:hitachi:electronic_form_workflow-developer_client_set:06-70-/f
-
cpe:2.3:a:hitachi:electronic_form_workflow-developer_client_set:07-00
-
cpe:2.3:a:hitachi:electronic_form_workflow-developer_client_set:07-00-/c
-
cpe:2.3:a:hitachi:electronic_form_workflow-developer_client_set:07-10
-
cpe:2.3:a:hitachi:electronic_form_workflow-developer_client_set:07-10-/a
-
cpe:2.3:a:hitachi:electronic_form_workflow-developer_client_set:07-11
-
cpe:2.3:a:hitachi:electronic_form_workflow-developer_client_set:07-11-/c
-
cpe:2.3:a:hitachi:electronic_form_workflow-developer_client_set:07-20
-
cpe:2.3:a:hitachi:electronic_form_workflow-developer_client_set:07-20-/b
-
cpe:2.3:a:hitachi:electronic_form_workflow-developer_set:07-50
-
cpe:2.3:a:hitachi:electronic_form_workflow-developer_set:07-50-/d
-
cpe:2.3:a:hitachi:electronic_form_workflow-developer_set:07-60
-
cpe:2.3:a:hitachi:electronic_form_workflow-developer_set:07-60-/i
-
cpe:2.3:a:hitachi:electronic_form_workflow-professional_library_set:06-70
-
cpe:2.3:a:hitachi:electronic_form_workflow-professional_library_set:06-70-/c
-
cpe:2.3:a:hitachi:electronic_form_workflow-professional_library_set:06-70-/f
-
cpe:2.3:a:hitachi:electronic_form_workflow-professional_library_set:07-00
-
cpe:2.3:a:hitachi:electronic_form_workflow-professional_library_set:07-00-/b
-
cpe:2.3:a:hitachi:electronic_form_workflow-professional_library_set:07-00-/c
-
cpe:2.3:a:hitachi:electronic_form_workflow-professional_library_set:07-10
-
cpe:2.3:a:hitachi:electronic_form_workflow-professional_library_set:07-10-/a
-
cpe:2.3:a:hitachi:electronic_form_workflow-professional_library_set:07-11
-
cpe:2.3:a:hitachi:electronic_form_workflow-professional_library_set:07-11-/c
-
cpe:2.3:a:hitachi:electronic_form_workflow-professional_library_set:07-20
-
cpe:2.3:a:hitachi:electronic_form_workflow-professional_library_set:07-20-/b
-
cpe:2.3:a:hitachi:electronic_form_workflow-professional_set:07-50
-
cpe:2.3:a:hitachi:electronic_form_workflow-professional_set:07-50-/d
-
cpe:2.3:a:hitachi:electronic_form_workflow-standard_set:06-70
-
cpe:2.3:a:hitachi:electronic_form_workflow-standard_set:06-70-/c
-
cpe:2.3:a:hitachi:electronic_form_workflow-standard_set:06-70-/f
-
cpe:2.3:a:hitachi:electronic_form_workflow-standard_set:07-00
-
cpe:2.3:a:hitachi:electronic_form_workflow-standard_set:07-00-/b
-
cpe:2.3:a:hitachi:electronic_form_workflow-standard_set:07-00-/c
-
cpe:2.3:a:hitachi:electronic_form_workflow-standard_set:07-10
-
cpe:2.3:a:hitachi:electronic_form_workflow-standard_set:07-10-/a
-
cpe:2.3:a:hitachi:electronic_form_workflow-standard_set:07-11
-
cpe:2.3:a:hitachi:electronic_form_workflow-standard_set:07-11-/c
-
cpe:2.3:a:hitachi:electronic_form_workflow-standard_set:07-20
-
cpe:2.3:a:hitachi:electronic_form_workflow-standard_set:07-20-/b
-
cpe:2.3:a:hitachi:electronic_form_workflow_set:07-50
-
cpe:2.3:a:hitachi:electronic_form_workflow_set:07-50-/d
-
cpe:2.3:a:hitachi:electronic_form_workflow_set:07-60
-
cpe:2.3:a:hitachi:electronic_form_workflow_set:07-60-/i
-
cpe:2.3:a:hitachi:groupmax_collaboration:07-20
-
cpe:2.3:a:hitachi:groupmax_collaboration:07-20-/d
-
cpe:2.3:a:hitachi:groupmax_collaboration:07-30
-
cpe:2.3:a:hitachi:groupmax_collaboration:07-30-/f
-
cpe:2.3:a:hitachi:groupmax_collaboration:07-35
-
cpe:2.3:a:hitachi:groupmax_collaboration:07-35-/f
-
cpe:2.3:a:hitachi:ibm_xl_c/c++_v7_for_aix_&_hitachi_developer's_kit_for_java:01-00
-
cpe:2.3:a:hitachi:ibm_xl_c/c++_v8_for_aix_&_hitachi_developer's_kit_for_java:01-00
-
cpe:2.3:a:hitachi:processing_kit_for_xml:01-00
-
cpe:2.3:a:hitachi:processing_kit_for_xml:01-05
-
cpe:2.3:a:hitachi:processing_kit_for_xml:01-05-/a
-
cpe:2.3:a:hitachi:processing_kit_for_xml:01-05-/b
-
cpe:2.3:a:hitachi:processing_kit_for_xml:01-05-/c
-
cpe:2.3:a:hitachi:processing_kit_for_xml:01-05-/d
-
cpe:2.3:a:hitachi:processing_kit_for_xml:01-07
-
cpe:2.3:a:hitachi:processing_kit_for_xml:01-07-/a
-
cpe:2.3:a:hitachi:processing_kit_for_xml:02-00
-
cpe:2.3:a:hitachi:processing_kit_for_xml:02-00-/b
-
cpe:2.3:a:hitachi:processing_kit_for_xml:02-00-/c
-
cpe:2.3:a:hitachi:processing_kit_for_xml:02-00-/d
-
cpe:2.3:a:hitachi:processing_kit_for_xml:02-05
-
cpe:2.3:a:hitachi:processing_kit_for_xml:02-05-/a
-
cpe:2.3:a:hitachi:processing_kit_for_xml:02-05-/c
-
cpe:2.3:a:hitachi:ucosminexus/opentp1_web_web_front-endset:02-70
-
cpe:2.3:a:hitachi:ucosminexus/opentp1_web_web_front-endset:02-70-/a
-
cpe:2.3:a:hitachi:ucosminexus_application_server:06-70
-
cpe:2.3:a:hitachi:ucosminexus_application_server:06-70-/a
-
cpe:2.3:a:hitachi:ucosminexus_application_server:06-70-/e
-
cpe:2.3:a:hitachi:ucosminexus_application_server:06-70-/f
-
cpe:2.3:a:hitachi:ucosminexus_application_server:06-70-/g
-
cpe:2.3:a:hitachi:ucosminexus_application_server:06-70-/l
-
cpe:2.3:a:hitachi:ucosminexus_application_server:06-70-/n
-
cpe:2.3:a:hitachi:ucosminexus_application_server:06-70f
-
cpe:2.3:a:hitachi:ucosminexus_application_server:06-71
-
cpe:2.3:a:hitachi:ucosminexus_application_server:06-71-/f
-
cpe:2.3:a:hitachi:ucosminexus_application_server:06-71-/g
-
cpe:2.3:a:hitachi:ucosminexus_application_server:06-72
-
cpe:2.3:a:hitachi:ucosminexus_application_server:06-72-/d
-
cpe:2.3:a:hitachi:ucosminexus_application_server:07-00
-
cpe:2.3:a:hitachi:ucosminexus_application_server:07-10
-
cpe:2.3:a:hitachi:ucosminexus_application_server:07-60
-
cpe:2.3:a:hitachi:ucosminexus_application_server:08-00
-
cpe:2.3:a:hitachi:ucosminexus_application_server:6.7
-
cpe:2.3:a:hitachi:ucosminexus_application_server:7
-
cpe:2.3:a:hitachi:ucosminexus_application_server:8
-
cpe:2.3:a:hitachi:ucosminexus_client:06-70
-
cpe:2.3:a:hitachi:ucosminexus_client:06-70-/f
-
cpe:2.3:a:hitachi:ucosminexus_client:06-71
-
cpe:2.3:a:hitachi:ucosminexus_client:06-71-/f
-
cpe:2.3:a:hitachi:ucosminexus_client:07-00
-
cpe:2.3:a:hitachi:ucosminexus_client:07-60
-
cpe:2.3:a:hitachi:ucosminexus_client:08-00
-
cpe:2.3:a:hitachi:ucosminexus_client:8
-
cpe:2.3:a:hitachi:ucosminexus_collaboration:06-20
-
cpe:2.3:a:hitachi:ucosminexus_collaboration:06-20-/d
-
cpe:2.3:a:hitachi:ucosminexus_collaboration:06-30
-
cpe:2.3:a:hitachi:ucosminexus_collaboration:06-30-/f
-
cpe:2.3:a:hitachi:ucosminexus_collaboration:06-35
-
cpe:2.3:a:hitachi:ucosminexus_collaboration:06-35-/f
-
cpe:2.3:a:hitachi:ucosminexus_developer:06-70
-
cpe:2.3:a:hitachi:ucosminexus_developer:06-70-/f
-
cpe:2.3:a:hitachi:ucosminexus_developer:06-71
-
cpe:2.3:a:hitachi:ucosminexus_developer:06-71-/f
-
cpe:2.3:a:hitachi:ucosminexus_developer:07-00
-
cpe:2.3:a:hitachi:ucosminexus_developer:07-60
-
cpe:2.3:a:hitachi:ucosminexus_developer:08-00
-
cpe:2.3:a:hitachi:ucosminexus_developer:6
-
cpe:2.3:a:hitachi:ucosminexus_developer:6.7
-
cpe:2.3:a:hitachi:ucosminexus_developer:7
-
cpe:2.3:a:hitachi:ucosminexus_developer:8
-
cpe:2.3:a:hitachi:ucosminexus_operator:07-00
-
cpe:2.3:a:hitachi:ucosminexus_operator:07-60
-
cpe:2.3:a:hitachi:ucosminexus_operator:6.7
-
cpe:2.3:a:hitachi:ucosminexus_operator:7
-
cpe:2.3:a:hitachi:ucosminexus_operator:8
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:07-00
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:07-60
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:08-00
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:6.7
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:7
-
cpe:2.3:a:hitachi:ucosminexus_service_architect:8
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:07-00
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:07-10
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:07-60
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:08-00
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:6.7
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:7
-
cpe:2.3:a:hitachi:ucosminexus_service_platform:8