Published:2004/09/24 Last Updated:2008/05/21
JVN#F88C2C13
desknet's buffer overflow vulnerability
Overview
destnet's contains multiple vulnerabilities. A malicious script may be executed when an user views a crafted HTML email or information.
Products Affected
- desknet's V4.2J R1.8 and earlier versions
Description
destnet's contains multiple vulnerabilities.
- A malicious script may be executed when the user views an crafted HTML email or information.
- A script written in the src attribute of the img tag may be executed.
Impact
An attacker could obtain a login IDs, passwords, or session information. As a result, the attaker could impersonate a user, view email, alter configuration information, and etc.
Solution
Vendor Status
References
JPCERT/CC Addendum
Credit
Other Information
| JPCERT Alert | |
| JPCERT Reports | |
| CERT Advisory | |
| CPNI Advisory | |
| TRnotes | |
| CVE | |
| JVN iPedia |
JVNDB-2004-000587 |