Japan Vulnerability NotesJVN:44999463JVN#44999463: Ichitaro series vulnerable to arbitrary code execution
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
Percentile
92.8%
The “Ichitaro” series word processing software, from JustSystems Corporation contains a vulnerability that may allow arbitrary code execution.
For more information, please refer to the developer’s website.
Impact
When a user opens a specially crafted file, arbitrary code may be executed.
Solution
Update the software
Apply the appropriate update module according to the information provided by the developer.
Products Affected
- Ichitaro 2013 Gen
- Ichitaro 2013 Gen Trial Edition
- Ichitaro 2012 Shou
- Ichitaro 2011 Sou / Ichitaro 2011
- Ichitaro Pro 2
- Ichitaro Pro 2 Trial Edition
- Ichitaro Pro
- Ichitaro Government 7
- Ichitaro Government 6
- Ichitaro 2010
- Ichitaro Government 2010
- Ichitaro 2009, Ichitaro Government 2009
- Ichitaro 2008, Ichitaro Government 2008
- Ichitaro 2007, Ichitaro Government 2007
- Ichitaro 2006, Ichitaro Government 2006
- Ichitaro Portable with oreplug
- Ichitaro Viewer
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
Percentile
92.8%