[Japanese]

JVNDB-2006-000734

Ichitaro buffer overflow vulnerability

Overview

Ichitaro, word-processing software contains a buffer overflow vulnerability.
CVSS Severity (What is CVSS?)

CVSS V2 Severity:
Base Metrics 5.1 (Medium) [IPA Score]
  • Access Vector: Network
  • Access Complexity: High
  • Authentication: None
  • Confidentiality Impact: Partial
  • Integrity Impact: Partial
  • Availability Impact: Partial
Affected Products


JustSystems Corporation
  • Ichitaro 2006
  • Ichitaro 2006 demo version
  • Ichitaro Government 2006

Impact

Arbitrary code could be executed on the Ichitaro user's PC, if the user opens a specially crafted Ichitaro file sent by a remote attacker.
Solution

Vendor Information

JustSystems Corporation
  • JUST SYSTEM : pd6004 (Japanese)
CWE (What is CWE?)

  1. Resource Management Errors(CWE-399) [NVD Evaluation]
CVE (What is CVE?)

  1. CVE-2006-5424
References

  1. JVN : JVN#90815371
  2. National Vulnerability Database (NVD) : CVE-2006-5424
  3. Secunia Advisory : SA22386
  4. SecurityFocus : 20610
  5. FrSIRT Advisories : FrSIRT/ADV-2006-4092
Revision History

  • [2008/05/21]
      Web page published

Date Public2006/10/18
Date First Published2008/05/21
Date Last Updated2008/05/21