Vulnerabilities > Hitachi
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-12-31 | CVE-2004-2492 | Cross-Site Scripting And Directory Traversal vulnerability in Groupmax World Wide Web Cross-site scripting (XSS) vulnerability in Groupmax World Wide Web (GmaxWWW) Desktop 5, 6, and Desktop for Jichitai 6, allows remote attackers to inject arbitrary web script or HTML via the QUERY parameter. network hitachi | 4.3 |
| 2004-12-31 | CVE-2004-2452 | Information Disclosure vulnerability in Cosminexus Portal Framework Unknown vulnerability in Hitachi Cosminexus Portal Framework 01-00, 01-01, 01-02, 02-01, 02-02, 02-03, and other versions allows remote attackers to obtain sensitive information in the <ut:cache> tag library. | 5.0 |
| 2004-12-31 | CVE-2004-2421 | Remote vulnerability in Hitachi JP1 P-1B41-9461, JP1 P-1B41-9471 and JP1 P-1J41-9471 Unknown vulnerability in Hitachi Job Management Partner (JP1) JP1/File Transmission Server/FTP 6 and 7, when running on HP-UX in trusted mode, allows attackers to bypass authentication and gain administrator rights. | 10.0 |
| 2004-12-31 | CVE-2004-2420 | Remote vulnerability in Hitachi JP1 P-1B41-9461, JP1 P-1B41-9471 and JP1 P-1J41-9471 Hitachi Job Management Partner (JP1) JP1/File Transmission Server/FTP 6 and 7 allows remote attackers to cause a denial of service (daemon halt) via a port scan involving reset packets. | 5.0 |
| 2004-12-31 | CVE-2004-1478 | Remote vulnerability in Macromedia JRun JRun 4.0 does not properly generate and handle the JSESSIONID, which allows remote attackers to perform a session fixation attack and hijack a user's HTTP session. | 7.5 |
| 2004-10-05 | CVE-2004-0928 | Remote vulnerability in Macromedia JRun The Microsoft IIS Connector in JRun 4.0 and Macromedia ColdFusion MX 6.0, 6.1, and 6.1 J2EE allows remote attackers to bypass authentication and view source files, such as .asp, .pl, and .php files, via an HTTP request that ends in ";.cfm". | 5.0 |
| 2003-12-01 | CVE-2003-0564 | Denial of Service vulnerability in Hitachi products Multiple vulnerabilities in multiple vendor implementations of the Secure/Multipurpose Internet Mail Extensions (S/MIME) protocol allow remote attackers to cause a denial of service and possibly execute arbitrary code via an S/MIME email message containing certain unexpected ASN.1 constructs, as demonstrated using the NISSC test suite. | 5.0 |