Hitachi JP1/NETM/DM Manager产品未明SQL注入漏洞

Hitachi JP1/NETM/DM Manager对输入数据缺少充分过滤检查，可导致SQL注入攻击获得敏感信息。

发送记性请求给JP1/NETM/DM使用的相关数据库，可导致执行任意SQL命令和破坏数据库。

目前没有详细漏洞细节提供。

Hitachi NETM/DM 02-03-/F(*1)
Hitachi NETM/DM 02-00
Hitachi JP1/NETM/DM Manager Embedded RDB Edition 07-53-09
Hitachi JP1/NETM/DM Manager Embedded RDB Edition 07-00
Hitachi JP1/NETM/DM Manager 08-10
Hitachi JP1/NETM/DM Manager 08-02-01
Hitachi JP1/NETM/DM Manager 08-00
Hitachi JP1/NETM/DM Manager 07-53-09
Hitachi JP1/NETM/DM Manager 07-50
Hitachi JP1/NETM/DM Manager 07-00
Hitachi JP1/NETM/DM Manager 06-72-/G
Hitachi JP1/NETM/DM Manager 06-00
Hitachi JP1/NETM/DM Manager 05-24-/E(*1)
Hitachi JP1/NETM/DM Manager 03-00
Hitachi JP1/NETM/Asset Information Manager Smart Edition 01-00-/A(*1)
Hitachi JP1/NETM/Asset Information Manager Smart Edition 01-00

可参考如下安全公告获得补丁信息：

<a href=“http://www.hitachi-support.com/security_e/vuls_e/HS07-019_e/index-e.html” target=“_blank”>http://www.hitachi-support.com/security_e/vuls_e/HS07-019_e/index-e.html</a>