Topics

June 4, 2009

• Vulnerability in Elevating Privileges for the JP1/VERITAS NetBackup Communications Setup s

June 4, 2009

• Cross-site Scripting Vulnerability When Using the Status Information Display Function in Hitachi Web Server

June 4, 2009

• Cross-Site Scripting Vulnerability in the Hitachi Web Server Error Page

June 4, 2009

• Cross-Site Scripting Vulnerability in the Hitachi Web Server Imagemap Function

June 4, 2009

• Vulnerability When Using a Reverse Proxy Function of Hitachi Web Server

June 4, 2009

• Cross-Site Scripting Vulnerability in Hitachi Web Server Function for Creating Server-Status Pages

June 4, 2009

• Vulnerability in Hitachi Web Server Function for Authenticating SSL Clients

Information Security Releases

This website integrates information security releases for IT systems of the Hitachi group, in line with "Information Security Early Warning Partnership Guidelines". The following security information is published on this website:

Product Security Information for IT Systems.

Information about Hitachi product vulnerabilities, and how to avoid or solve associated security problems.

Incident Response Information for IT Systems.

Information about how to avoid or recover from the latest security violations and related problems.

By continuously improving the circulation of vulnerability information to our customers, the Hitachi group aims to prevent or limit damage caused by illegal access, viruses, and related problems. Also, after damage occurs, we will strive to resolve the problem as quickly and effectively as possible.

Hitachi Group Sites

• Hitachi, Ltd.
  • Hitachi Software Division
  • Storage (SANRISE Series) (Japanese)
  • Advanced Server (HA8000) (Japanese)
  • Business PC (FLORA) (Japanese)
  • Consumer PC (Prius) (Japanese)
  • Router/Switch (GR2000, etc.)(Japanese)
  • ALAXALA Networks Corporation(Japanese)
  • Hitachi Cable, Ltd. (Japanese)

  Response Information Releases for Major Security Incidents

  From this website, the Hitachi group publishes response information for major security incidents. For further information, see the menu in the right top corner of this page.

  • http://jvn.jp/jp/index.html(Japanese)
  • Microsoft Security Information
  • US-CERT Technical Alert
  • CPNI
  • While HIRT strives to provide security information that is as current and accurate as possible, all information on this website is subject to change without notice or obligation, due to the constantly changing information security environment. When you use information from this website, we recommend you check it is the most recent information available.
  • Information about the products of other companies on this website is provided by the respective companies or on the basis of the best information publicly available at the time. Hitachi intends to maintain the accuracy and integrity of this information, however, all information about other companies' products on this website is subject to change without notice or obligation, due to changes that can be made by the companies regarding their products.
  • The sole purpose of this website is to provide information about security issues related to Hitachi group IT products. Hitachi makes no warranties of any kind, either expressed or implied as to any matter including, but not limited to, warranty of consequences caused by use of the information.