Skip to main content

Hitachi
Contact UsContact Us

Security Information ID: hitachi-sec-2016-128

Update: December 28, 2016

A Remote Command Execution Vulnerability was found in JP1/IT Desktop Management 2 - Manager and JP1/NETM/DM.

Vulnerability ID

HS16-028

Vulnerability description

A Remote Command Execution Vulnerability was found in JP1/IT Desktop Management 2 - Manager and JP1/NETM/DM.

Affected products and versions are listed below. Please upgrade your version to the appropriate version.

Affected products

The information is organized under the following headings:

(Example)
Product name: Gives the name of the affected product.

Version:

Platform
Gives the affected version.

Product name: JP1/IT Desktop Management 2 - Manager

Version(s):

Windows
10-50 to 11-00

Product name: Job Management Partner 1/IT Desktop Management 2 - Manager

Version(s):

Windows
10-50

Product name: JP1/IT Desktop Management 2 - Additional License for UNIX

Version(s):

HP-UX, AIX, Solaris
11-00

Product name: JP1/IT Desktop Management 2 - Additional License for Linux

Version(s):

Linux
11-00

Product name: JP1/NETM/DM Manager

Version(s):

Windows
05-12 to 10-10

Product name: Job Management Partner 1/Software Distribution Manager

Version(s):

Windows (English version)
05-23 to 09-51
Windows (Chinese version)
06-71 to 09-51
Windows (Korean version)
06-00 to 07-00

Product name: JP1/NETM/DM Manager Embedded RDB Edition

Version(s):

Windows
07-50 to 07-53

Product name: Job Management Partner 1/Software Distribution Manager Embedded RDB Edition

Version(s):

Windows (English version)
07-50
Windows (Chinese version)
07-50

Product name: JP1/NETM/DM SubManager

Version(s):

Windows
03-00 to 07-53
HP-UX(PA-RISC)
06-00 to 08-50
HP-UX(IPF)
07-00 to 08-50
AIX
06-00 to 08-50
Solaris
06-00 to 08-50
Linux(x86)
06-00 to 08-50
Linux(IPF)
06-00 to 08-50
Tru64
06-00 to 07-00
HI-UX/WE2
06-00

Product name: Job Management Partner 1/Software Distribution SubManager

Version(s):

Windows (English version)
05-10 to 07-50
Windows (Chinese version)
06-71 to 07-50
Windows (Korean version)
06-00 to 07-00
HP-UX(PA-RISC)
06-00 to 08-50
HP-UX(IPF)
07-00 to 08-50
AIX
06-00 to 08-50
Solaris
06-00 to 08-50
Tru64
06-00 to 06-71

Product name: JP1/NETM/DM Client

Version(s):

Windows
05-10 to 10-10
HP-UX(PA-RISC)
06-00 to 08-50
HP-UX(IPF)
07-00 to 10-10
AIX
06-00 to 10-10
Solaris
06-00 to 10-10
Linux(x86)
06-00 to 10-10
Linux(IPF)
07-00 to 09-50
Tru64
06-00 to 07-00
HI-UX/WE2
06-00

Product name: Job Management Partner 1/Software Distribution Client

Version(s):

Windows (English version)
05-10 to 09-51
Windows (Chinese version)
06-71 to 09-51
Windows (Korean version)
06-00 to 07-00
HP-UX(PA-RISC)
06-00 to 08-50
HP-UX(IPF)
07-00 to 09-00
AIX
06-00 to 09-50
Solaris
06-00 to 07-00
Tru64
06-00 to 06-71
HI-UX/WE2
06-00

Product name: JP1/NETM/DM Client - Base

Version(s):

Windows
08-00 to 10-10

Product name: JP1/NETM/DM Client Light Edition

Version(s):

Windows
06-01 to 07-53

Product name: Groupmax Remote Installation Client

Version(s):

Windows
02-20 to 03-11
HP-UX(PA-RISC)
02-10 to 03-10
Solaris
02-20
HI-UX/WE2
02-31 to 03-00

Product name: NETM/DM Client

Version(s):

Windows
03-00 to 03-30

Product name: NETM/DM/W

Version(s):

HP-UX(PA-RISC)
01-11
AIX
01-08
Solaris
01-09
Tru64
01-11
HI-UX/WE2
01-09 to 01-13

Product name: JP1/NETM/DM/W

Version(s):

HP-UX(PA-RISC)
05-10 to 05-23
AIX
05-10 to 05-23
Solaris
05-10 to 05-23
Linux(x86)
05-20
Tru64
05-01 to 05-20
HI-UX/WE2
05-10 to 05-23

Product name: Job Management Partner 1/Software Distribution Workstation

Version(s):

HP-UX(PA-RISC)
05-11 to 05-20
AIX
05-20
Solaris
05-12 to 05-20
Tru64
05-20
HI-UX/WE2
05-12

Product name: NETM/DM/P

Version(s):

Windows
01-00 to 02-03

Product name: NETM/DM light

Version(s):

Windows
01-00 to 01-02

Fixed products

The information is organized under the following headings:

(Example)
Product name: Gives the name of the fixed product.

Version:

Platform
Gives the fixed version, and release date.

Scheduled version:

Platform
Gives the fixed version scheduled to be released.

Product name: JP1/IT Desktop Management 2 - Manager

Version(s):

Windows
11-01 October 31, 2016

Product name: JP1/IT Desktop Management 2 - Additional License for UNIX

Version(s):

HP-UX, AIX, Solaris
11-00-01 October 21, 2016

Product name: JP1/IT Desktop Management 2 - Additional License for Linux

Version(s):

Linux
11-00-01 October 21, 2016

Product name: JP1/NETM/DM Manager

Version(s):

Windows
10-10-14 December 13, 2016

Product name: JP1/NETM/DM Client

Version(s):

Windows
10-10-14 December 13, 2016
HP-UX, AIX, Solaris, Linux
10-10-05 October 21, 2016

Product name: JP1/NETM/DM Client - Base

Version(s):

Windows
10-10-14 December 13, 2016

For details on the fixed products, contact your Hitachi support service representative.

Revision history

December 28, 2016
Information about fixed products is updated.
October 31, 2016
This page is released.
  • Hitachi, Ltd. (hereinafter referred to as "Hitachi") tries to provide accurate information about security countermeasures. However, since information about security problems constantly changes, the contents of these Web pages are subject to change without prior notice. When referencing information, please confirm that you are referencing the latest information.
  • The Web pages include information about products that are developed by non-Hitachi software developers. Vulnerability information about those products is based on the information provided or disclosed by those developers. Although Hitachi is careful about the accuracy and completeness of this information, the contents of the Web pages may change depending on the changes made by the developers.
  • The Web pages are intended to provide vulnerability information only, and Hitachi shall not have any legal responsibility for the information contained in them. Hitachi shall not be liable for any consequences arising out of or in connection with the security countermeasures or other actions that you will take or have taken (or not taken) by yourself.
  • The links to other web sites are valid at the time of the release of the page. Although Hitachi makes an effort to maintain the links, Hitachi cannot guarantee their permanent availability.