NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Secunia Advisories> 2006-q1

[SA18538] Hitachi NetInsight II Port Discovery Denial of Service

From: Secunia Security Advisories (sec-advsecunia.com)
Date: Fri Jan 20 2006 - 07:47:13 CST

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

TITLE:
Hitachi NetInsight II Port Discovery Denial of Service

SECUNIA ADVISORY ID:
SA18538

VERIFY ADVISORY:
http://secunia.com/advisories/18538/

CRITICAL:
Less critical

IMPACT:
DoS

WHERE:
From local network

SOFTWARE:
Hitachi NetInsight II
http://secunia.com/product/6894/

DESCRIPTION:
A vulnerability has been reported in Hitachi NetInsight II, which can
be exploited by malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to an error in the Port Discovery
service in the handling of malformed received data packets. This can
be exploited to cause the service to stop responding.

The vulnerability has been reported in the following versions.
* JP1/NetInsight II - Port Discovery Standard version 07-00 through
07-11
* JP1/NetInsight II - Port Discovery Advance version 07-50

SOLUTION:
Update to model R-15237-9154 version 07-50-01 or later.

Users can contact Hitachi support service for the update.

PROVIDED AND/OR DISCOVERED BY:
Reported by vendor.

ORIGINAL ADVISORY:
http://www.hitachi-support.com/security_e/vuls_e/HS05-027_e/index-e.html

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/

Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories

----------------------------------------------------------------------

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]