----------------------------------------------------------------------


  Secunia CSI
+ Microsoft SCCM
-----------------------
= Extensive Patch Management

http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/


----------------------------------------------------------------------

TITLE:
Cybozu Products Login Security Bypass Vulnerability

SECUNIA ADVISORY ID:
SA39508

VERIFY ADVISORY:
http://secunia.com/advisories/39508/

DESCRIPTION:
A vulnerability has been reported in Cybozu Office and Cybozu dot
Sales, which can be exploited by malicious people to bypass certain
security restrictions.

The vulnerability is caused due to insufficient checks being
performed when accessing the login interface and can be exploited to
bypass access restrictions.

SOLUTION:
Restrict access to the affected functionality. Please see the
vendor's advisory for more information.

PROVIDED AND/OR DISCOVERED BY:
Reported by the vendor.

ORIGINAL ADVISORY:
Cybozu:
http://cybozu.co.jp/products/dl/notice/detail/0034.html

JVN:
http://jvn.jp/jp/JVN87730223/index.html

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
private users keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------