CVE-2017-10870
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Memory corruption vulnerability in Rakuraku Hagaki (Rakuraku Hagaki 2018, Rakuraku Hagaki 2017, Rakuraku Hagaki 2016) and Rakuraku Hagaki Select for Ichitaro (Ichitaro 2017, Ichitaro 2016, Ichitaro 2015, Ichitaro Pro3, Ichitaro Pro2, Ichitaro Pro, Ichitaro 2011, Ichitaro Government 8, Ichitaro Government 7, Ichitaro Government 6 and Ichitaro 2017 Trial version) allows attackers to execute arbitrary code with privileges of the application via specially crafted file.
Una vulnerabilidad de corrupción de memoria en Rakuraku Hagaki (Rakuraku Hagaki 2018, Rakuraku Hagaki 2017, Rakuraku Hagaki 2016) y Rakuraku Hagaki Select para Ichitaro (Ichitaro 2017, Ichitaro 2016, Ichitaro 2015, Ichitaro Pro3, Ichitaro Pro2, Ichitaro Pro, Ichitaro 2011, Ichitaro Government 8, Ichitaro Government 7, Ichitaro Government 6 e Ichitaro 2017 Trial version) permite que atacantes ejecuten código arbitrario con privilegios de la aplicación mediante archivos especialmente manipulados.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2017-07-04 CVE Reserved
- 2017-11-02 CVE Published
- 2024-06-05 EPSS Updated
- 2024-08-05 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| https://jvn.jp/en/vu/JVNVU93703434/index.html | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.justsystems.com/jp/info/js17003.html | 2017-11-22 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Justsystems Search vendor "Justsystems" | Easy Postcard 2016 Search vendor "Justsystems" for product "Easy Postcard 2016" | - | - |
Affected
| ||||||
| Justsystems Search vendor "Justsystems" | Easy Postcard 2017 Search vendor "Justsystems" for product "Easy Postcard 2017" | - | - |
Affected
| ||||||
| Justsystems Search vendor "Justsystems" | Easy Postcard 2018 Search vendor "Justsystems" for product "Easy Postcard 2018" | - | - |
Affected
| ||||||
| Justsystems Search vendor "Justsystems" | Ichitaro 2016 Search vendor "Justsystems" for product "Ichitaro 2016" | - | - |
Affected
| ||||||
| Justsystems Search vendor "Justsystems" | Ichitaro 2017 Search vendor "Justsystems" for product "Ichitaro 2017" | - | - |
Affected
| ||||||
| Justsystems Search vendor "Justsystems" | Ichitaro 2017 Trial Version Search vendor "Justsystems" for product "Ichitaro 2017 Trial Version" | - | - |
Affected
| ||||||
| Justsystems Search vendor "Justsystems" | Ichitaro 2018 Search vendor "Justsystems" for product "Ichitaro 2018" | - | - |
Affected
| ||||||
| Justsystems Search vendor "Justsystems" | Ichitaro Government 6 Search vendor "Justsystems" for product "Ichitaro Government 6" | - | - |
Affected
| ||||||
| Justsystems Search vendor "Justsystems" | Ichitaro Government 7 Search vendor "Justsystems" for product "Ichitaro Government 7" | - | - |
Affected
| ||||||
| Justsystems Search vendor "Justsystems" | Ichitaro Government 8 Search vendor "Justsystems" for product "Ichitaro Government 8" | - | - |
Affected
| ||||||
| Justsystems Search vendor "Justsystems" | Ichitaro Pro Search vendor "Justsystems" for product "Ichitaro Pro" | - | - |
Affected
| ||||||
| Justsystems Search vendor "Justsystems" | Ichitaro Pro 2 Search vendor "Justsystems" for product "Ichitaro Pro 2" | - | - |
Affected
| ||||||
| Justsystems Search vendor "Justsystems" | Ichitaro Pro 2011 Search vendor "Justsystems" for product "Ichitaro Pro 2011" | - | - |
Affected
| ||||||
| Justsystems Search vendor "Justsystems" | Ichitaro Pro 3 Search vendor "Justsystems" for product "Ichitaro Pro 3" | - | - |
Affected
| ||||||