Hitachi Groupmax Mobile Option Unspecified Remote Buffer Overflow Vulnerability

Bugtraq ID:	23690
Class:	Boundary Condition Error
CVE:
Remote:	Yes
Local:	No
Published:	Apr 27 2007 12:00AM
Updated:	Apr 30 2007 06:20PM
Credit:	The vendor disclosed this issue.
Vulnerable:	Hitachi Groupmax Mobile Option for Mobile-Phone 07-30 Hitachi Groupmax Mobile Option for Mobile-Phone 07-00 Hitachi Groupmax Mobile Option for i-mode 05-23 Hitachi Groupmax Mobile Option for i-mode 05-11 Hitachi Groupmax Mobile Option for EZweb 06-04 Hitachi Groupmax Mobile Option for EZweb 06-00
Not Vulnerable:	Hitachi Groupmax Mobile Option for Mobile-Phone 07-31

Hitachi Groupmax Mobile Option Unspecified Remote Buffer Overflow Vulnerability

Hitachi Groupmax Mobile Option is prone to a remote buffer-overflow vulnerability because the software fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer.

Successful exploits allow remote attackers to execute arbitrary machine code in the context of the vulnerable application. Failed exploit attempts likely result in denial-of-service conditions.

Hitachi Groupmax Mobile Option Unspecified Remote Buffer Overflow Vulnerability

Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].

Hitachi Groupmax Mobile Option Unspecified Remote Buffer Overflow Vulnerability

Solution:
The vendor has released updated software to address this vulnerability. Please see the references for more information.

Hitachi Groupmax Mobile Option Unspecified Remote Buffer Overflow Vulnerability

References:

• Hitachi Device Manager Homepage ( Hitachi)
  
• HS07-009: Buffer Overflow Vulnerability of Groupmax Mobile Option for Mobile-Pho (Hitachi)