Published:2004/09/24  Last Updated:2008/05/21

JVN#F88C2C13
desknet's buffer overflow vulnerability

Overview

destnet's contains multiple vulnerabilities. A malicious script may be executed when an user views a crafted HTML email or information.

Products Affected

  • desknet's V4.2J R1.8 and earlier versions

Description

destnet's contains multiple vulnerabilities.

  • A malicious script may be executed when the user views an crafted HTML email or information.
  • A script written in the src attribute of the img tag may be executed.

Impact

An attacker could obtain a login IDs, passwords, or session information. As a result, the attaker could impersonate a user, view email, alter configuration information, and etc.

Solution

Vendor Status

References

JPCERT/CC Addendum

Credit

Other Information

JPCERT Alert
JPCERT Reports
CERT Advisory
CPNI Advisory
TRnotes
CVE
JVN iPedia JVNDB-2004-000587

Update History