Two vulnerabilities have been identified in SEIL/X Series and SEIL/B1, which could be exploited by remote attackers to cause a denial of service or compromise a vulnerable system.

The first issue is caused by a buffer overflow error within the URL filtering function, which could be exploited by attackers to crash an affected application or execute arbitrary code.

The second vulnerability is caused by an error within the NAT function, which could be exploited to cause a denial of service.

Affected Products

SEIL/X1 versions prior to 2.52
SEIL/X1 versions prior to 2.52
SEIL/X1 versions prior to 2.52

Solution

Upgrade to version 2.52.

References

http://www.vupen.com/english/advisories/2009/3111
http://www.seil.jp/seilseries/security/2009/a00669.php
http://www.seil.jp/seilseries/security/2009/a00674.php
http://jvn.jp/en/jp/JVN06362164/index.html
http://jvn.jp/en/jp/JVN13011682/index.html

Credits

Vulnerabilities reported by JPCERT/CC.

Changelog

2009-11-02 : Initial release

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.