CVSS: 9.3EPSS: 7%CPEs: 12EXPL: 0CVE-2010-2152
https://notcve.org/view.php?id=CVE-2010-2152
Unspecified vulnerability in JustSystems Ichitaro 2004 through 2009, Ichitaro Government 2006 through 2009, and Just School 2008 and 2009 allows remote attackers to execute arbitrary code via unknown vectors related to "product character attribute processing" for a document. Vulnerabilidad sin expecificar de JustSystems Ichitaro 2004 hasta 2009, Ichitaro Government 2006 hasta 2009, y Just School 2008 y 2009 permite a atacantes remotos ejecutar código arbitrario a través de vectores desconocidos relacionado con "el procesamiento de los atributos de las características de un producto" para un documento. • http://jvn.jp/en/jp/JVN17293765/index.html http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000024.html http://osvdb.org/65050 http://secunia.com/advisories/40008 http://www.ipa.go.jp/about/press/20100601.html http://www.justsystems.com/jp/info/js10002.html http://www.securityfocus.com/bid/40472 http://www.vupen.com/english/advisories/2010/1283 https://exchange.xforce.ibmcloud.com/vulnerabilities/59037 •
CVSS: 9.3EPSS: 7%CPEs: 11EXPL: 0CVE-2010-1424
https://notcve.org/view.php?id=CVE-2010-1424
Unspecified vulnerability in JustSystems Ichitaro and Ichitaro Government 2006 through 2010 allows user-assisted remote attackers to execute arbitrary code via a crafted font file. Vulnerabilidad no especificada en JustSystems Ichitaro y Ichitaro Government v2006 hasta v2010 permite a atacantes asistidos por usuarios remotamente ejecutar código de su elección a través de un fichero de fuentes modificado. • http://jvn.jp/en/jp/JVN98467259/index.html http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000015.html http://osvdb.org/63651 http://secunia.com/advisories/39256 http://www.justsystems.com/jp/info/js10001.html http://www.securitytracker.com/id?1023844 http://www.vupen.com/english/advisories/2010/0854 •
CVSS: 9.3EPSS: 0%CPEs: 15EXPL: 0CVE-2009-4737
https://notcve.org/view.php?id=CVE-2009-4737
Stack-based buffer overflow in JustSystems Corporation Ichitaro 13, 2004 through 2009, Viewer 2009 19.0.1.0 and earlier, and other versions allows context-dependent attackers to execute arbitrary code via a crafted Rich Text File (RTF), related to "pvpara ffooter." Desbordamiento de búfer basado en pila en JustSystems Corporation Ichitaro v13, desde v2004 hasta v2009, Viewer 2009 v19.0.1.0 y anteriores y otras versiones, permite a atacantes dependientes de contexto ejecutar código arbitrario a través de un fichero de texto enriquecido manipulado (RTF), relacionado con "pvpara ffooter." • http://jvn.jp/en/jp/JVN33846134/index.html http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-000018.html http://secunia.com/advisories/34611 http://www.fourteenforty.jp/research/advisory.cgi?FFRRA-20090407 http://www.ipa.go.jp/security/vuln/documents/2009/200904_ichitaro.html http://www.justsystems.com/jp/info/js09002.html http://www.osvdb.org/53349 http://www.securityfocus.com/bid/34403 http://www.vupen.com/english/advisories/2009/0957 https://exchange.xforce.ibmcloud&# • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 5%CPEs: 8EXPL: 0CVE-2009-1054
https://notcve.org/view.php?id=CVE-2009-1054
Unspecified vulnerability in JustSystems Ichitaro 13, 2004 through 2008, Lite2, and Ichitaro viewer 5.1.5.0 and earlier allows remote attackers to execute arbitrary code via a crafted file, as exploited in the wild by Trojan.Tarodrop.H in March 2009. Vulnerabilidad inespecífica en JustSystems Ichitaro v13, de la v2004 hasta la v2008, Lite2, y Ichitaro viewer v5.1.5.0 y anteriores permite a atacantes remotos ejecutar código de forma arbitraria a través de un fichero manipulado, tal y como lo explotaba Trojan.Tarodrop.H en Marzo de 2009. • http://secunia.com/advisories/34405 http://www.justsystems.com/jp/info/js09001.html http://www.securityfocus.com/bid/34138 http://www.symantec.com/business/security_response/writeup.jsp?docid=2009-031608-2424-99 http://www.vupen.com/english/advisories/2009/0769 https://exchange.xforce.ibmcloud.com/vulnerabilities/49280 •
CVSS: 9.3EPSS: 16%CPEs: 10EXPL: 0CVE-2008-0223
https://notcve.org/view.php?id=CVE-2008-0223
Buffer overflow in JustSystems JSFC.DLL, as used in multiple JustSystems products such as Ichitaro, allows remote attackers to execute arbitrary code via a crafted .JTD file. Un desbordamiento de búfer en JustSystems en la biblioteca JSFC.DLL, como es usado en varios productos de JustSystems como Ichitaro, permite a atacantes remotos ejecutar código arbitrario por medio de un archivo .JTD especialmente diseñado. • http://jvn.jp/jp/JVN%2308237857/index.html http://secunia.com/advisories/28275 http://www.fourteenforty.jp/research/advisory.cgi?FFRRA-20080107 http://www.justsystems.com/jp/info/pd8001.html http://www.securityfocus.com/bid/27153 http://www.securitytracker.com/id?1019168 http://www.vupen.com/english/advisories/2008/0045 https://exchange.xforce.ibmcloud.com/vulnerabilities/39501 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •