Lucene search

MitreCVE-2009-4737

HistoryApr 06, 2010 - 10:30 p.m.

CVE-2009-4737

2010-04-0622:30:00

CWE-119

mitre

web.nvd.nist.gov

security

ichitaro

buffer overflow

cve-2009-4737

nvd

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

Confidence

Low

EPSS

0.006

Percentile

78.0%

JSON

Stack-based buffer overflow in JustSystems Corporation Ichitaro 13, 2004 through 2009, Viewer 2009 19.0.1.0 and earlier, and other versions allows context-dependent attackers to execute arbitrary code via a crafted Rich Text File (RTF), related to “pvpara ffooter.”

Affected configurations

Nvd

Node

justsystemsichitaroMatch13

justsystemsichitaroMatch2004

justsystemsichitaroMatch2005

justsystemsichitaroMatch2006

justsystemsichitaroMatch2006-government

justsystemsichitaroMatch2007

justsystemsichitaroMatch2007-government

justsystemsichitaroMatch2008

justsystemsichitaroMatch2008-government

justsystemsichitaroMatch2009

justsystemsichitaroMatch2009-government

justsystemsichitaroMatch2009-trial

justsystemsichitaroMatchbungei

justsystemsichitaro_viewerMatch19.0.1.0

justsystemsichitaro_viewerMatch20.0.2.0

VendorProductVersionCPE
justsystemsichitaro13cpe:2.3:a:justsystems:ichitaro:13:*:*:*:*:*:*:*
justsystemsichitaro2004cpe:2.3:a:justsystems:ichitaro:2004:*:*:*:*:*:*:*
justsystemsichitaro2005cpe:2.3:a:justsystems:ichitaro:2005:*:*:*:*:*:*:*
justsystemsichitaro2006cpe:2.3:a:justsystems:ichitaro:2006:*:*:*:*:*:*:*
justsystemsichitaro2006cpe:2.3:a:justsystems:ichitaro:2006:-:government:*:*:*:*:*
justsystemsichitaro2007cpe:2.3:a:justsystems:ichitaro:2007:*:*:*:*:*:*:*
justsystemsichitaro2007cpe:2.3:a:justsystems:ichitaro:2007:-:government:*:*:*:*:*
justsystemsichitaro2008cpe:2.3:a:justsystems:ichitaro:2008:*:*:*:*:*:*:*
justsystemsichitaro2008cpe:2.3:a:justsystems:ichitaro:2008:-:government:*:*:*:*:*
justsystemsichitaro2009cpe:2.3:a:justsystems:ichitaro:2009:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
justsystems	ichitaro	13	cpe:2.3:a:justsystems:ichitaro:13:::::::*
justsystems	ichitaro	2004	cpe:2.3:a:justsystems:ichitaro:2004:::::::*
justsystems	ichitaro	2005	cpe:2.3:a:justsystems:ichitaro:2005:::::::*
justsystems	ichitaro	2006	cpe:2.3:a:justsystems:ichitaro:2006:::::::*
justsystems	ichitaro	2006	cpe:2.3:a:justsystems:ichitaro:2006:-:government:::::*
justsystems	ichitaro	2007	cpe:2.3:a:justsystems:ichitaro:2007:::::::*
justsystems	ichitaro	2007	cpe:2.3:a:justsystems:ichitaro:2007:-:government:::::*
justsystems	ichitaro	2008	cpe:2.3:a:justsystems:ichitaro:2008:::::::*
justsystems	ichitaro	2008	cpe:2.3:a:justsystems:ichitaro:2008:-:government:::::*
justsystems	ichitaro	2009	cpe:2.3:a:justsystems:ichitaro:2009:::::::*

Rows per page:

1-10 of 151

References

jvn.jp/en/jp/JVN33846134/index.html

jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-000018.html

secunia.com/advisories/34611

www.fourteenforty.jp/research/advisory.cgi?FFRRA-20090407

www.ipa.go.jp/security/vuln/documents/2009/200904_ichitaro.html

www.justsystems.com/jp/info/js09002.html

www.osvdb.org/53349

www.securityfocus.com/bid/34403

www.vupen.com/english/advisories/2009/0957

exchange.xforce.ibmcloud.com/vulnerabilities/49739

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

Confidence

Low

EPSS

0.006

Percentile

78.0%

JSON

Related for CVE-2009-4737