JVN#94347255
JP1/Extensible SNMP Agent fails to restrict access permissions
Overview
JP1/Extensible SNMP Agent provided by Hitachi fails to restrict access permissions.
Products Affected
- JP1/Extensible SNMP Agent for Windows 11-00, 12-00
- JP1/Extensible SNMP Agent 09-00 to 09-00-04, 10-00 to 10-00-02, and 10-10 to 10-10-01
- Job Management Partner1/Extensible SNMP Agent 09-00 to 09-00-04, 10-00 to 10-00-02, and 10-10 to 10-10-01
Description
JP1/Extensible SNMP Agent provided by Hitachi fails to restrict access permissions (CWE-276).
Impact
If an authenticated attacker who can log in to the product places a specially crafted DLL file in a specific directory, arbitrary code may be executed with the administrative privilege.
Solution
Update the Software
Update the software to the latest version according to the information provided by the developer.
References
JPCERT/CC Addendum
Vulnerability Analysis by JPCERT/CC
| Attack Vector(AV) | Physical (P) | Local (L) | Adjacent (A) | Network (N) |
|---|---|---|---|---|
| Attack Complexity(AC) | High (H) | Low (L) | ||
| Privileges Required(PR) | High (H) | Low (L) | None (N) | |
| User Interaction(UI) | Required (R) | None (N) | ||
| Scope(S) | Unchanged (U) | Changed (C) | ||
| Confidentiality Impact(C) | None (N) | Low (L) | High (H) | |
| Integrity Impact(I) | None (N) | Low (L) | High (H) | |
| Availability Impact(A) | None (N) | Low (L) | High (H) |
Comment
Assuming an attack scenario in which a logged-in attacker with some non-administrative privilege puts a crafted file in a specific directory, "Integrity (I)" is treated as the primary impact, whereas "Confidentiality (C)" and "Availability (A)" are treated as secondary.
Credit
Yutaka Kokubu, Shun Suzaki, and Kazuki Hirota of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
Other Information
| JPCERT Alert |
|
| JPCERT Reports |
|
| CERT Advisory |
|
| CPNI Advisory |
|
| TRnotes |
|
| CVE |
CVE-2024-4679 |
| JVN iPedia |
JVNDB-2024-000068 |