Japan Vulnerability NotesJVN:33846134JVN#33846134 Ichitaro series buffer overflow vulnerability
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
Percentile
78.0%
The “Ichitaro” series word processing software, from JustSystems Corporation, contains an issue in the reading of Rich Text Files resulting in a buffer overflow vulnerability. When a user opens a specially crafted file locally or through a website, arbitrary code may be executed with privleges of the user.
Impact
An attacker could execute arbitrary code with the privileges of the user.
Solution
Update the Software
Apply the update module provided by JustSystems.
Products Affected
- Ichitaro 2009
- Ichitaro Government 2009
- Ichitaro 2009 trial version
- Ichitaro 2008
- Ichitaro Government 2008
- Ichitaro 2007
- Ichitaro Government 2007
- Ichitaro 2006
- Ichitaro Government 2006
- Ichitaro 2005
- Ichitaro Bungei
- Ichitaro 2004
- Ichitaro 13
- Ichitaro Viewer 2009 version 19.0.1.0 and earlier
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
Percentile
78.0%