Lucene search

MitreCVE-2006-0807

HistoryFeb 21, 2006 - 2:02 a.m.

CVE-2006-0807

2006-02-2102:02:00

CWE-119

mitre

web.nvd.nist.gov

cve-2006-0807

njstar

chinese

japanese

word processor

buffer overflow

arbitrary code

font names

security vulnerability

CVSS2

5.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

AI Score

7.9

Confidence

High

EPSS

0.021

Percentile

89.2%

JSON

Stack-based buffer overflow in NJStar Chinese and Japanese Word Processor 4.x and 5.x before 5.10 allows user-assisted attackers to execute arbitrary code via font names in NJStar (.njx) documents.

Affected configurations

Nvd

Node

njstarchinese_word_processorRange≤5.01.41108

njstarjapanese_word_processorRange≤5.01.41108

VendorProductVersionCPE
njstarchinese_word_processor*cpe:2.3:a:njstar:chinese_word_processor:*:*:*:*:*:*:*:*
njstarjapanese_word_processor*cpe:2.3:a:njstar:japanese_word_processor:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
njstar	chinese_word_processor	*	cpe:2.3:a:njstar:chinese_word_processor::::::::
njstar	japanese_word_processor	*	cpe:2.3:a:njstar:japanese_word_processor::::::::

References

secunia.com/advisories/18702

secunia.com/secunia_research/2006-5/advisory/

securityreason.com/securityalert/461

securitytracker.com/id?1015649

www.njstar.com/njstar/chinese/

www.njstar.com/njstar/japanese/

www.osvdb.org/23354

www.securityfocus.com/archive/1/425498/100/0/threaded

www.securityfocus.com/bid/16737

www.vupen.com/english/advisories/2006/0670

exchange.xforce.ibmcloud.com/vulnerabilities/24773

CVSS2

5.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

AI Score

7.9

Confidence

High

EPSS

0.021

Percentile

89.2%

JSON

Related for CVE-2006-0807