Advisories » JustSystems Ichitaro Document Processing Multiple Remote Buffer Overflow Vulnerabilities
| Release Date: | 25/10/2007 | Severity: | Highly Critical  |
| SecWatch Advisory: | SWID1019360 | Cause: | Boundary error |
| Solution Status: | Vendor Patch | Impact: | Denial of service Execution of arbitrary code |
| Exploit Status: | None Available | Access Vector: | From remote |
| Affected Software: | Ichitaro 11.x Ichitaro 12.x Ichitaro 13.x Ichitaro 2004 Ichitaro 2005 Ichitaro 2006 Ichitaro 2007 Ichitaro for Linux Ichitaro Lite2 Ichitaro Punch Ichitaro viewer 4.x |
||
Description:
Multiple vulnerabilities in Ichitaro have been reported, which can be exploited by remote users to compromise a user's system.
Boundary errors exist when handling crafted documents within JSTARO4.OCX and TJSVDA.DLL, which can be exploited to cause stack-based buffer overflow and execute arbitrary code.
Solution:
The vulnerability has been fixed, apply patches:
http://www.justsystems.com/jp/...ystems.com/jp/info/pd7004.html
Credits:
Hiroshi Ukai, Fourteenfourty Research In
Free Vulnerability Notification Service
Receive free instant and customisable notifications of new vulnerabilities or exploits via e-mail, web or RSS feeds. Click here for more information.
Related Vulnerabilities and Exploits
13 Dec 07: JustSystems Ichitaro "JSGCI.DLL" Document Processing Remote Buffe..
03 Aug 07: JustSystems Ichitaro Document Processing Unspecified Remote Code ..
09 Apr 07: JustSystems Ichitaro Document Processing Unspecified Remote Code ..
21 Aug 06: Ichitaro Document Viewer Document Handling Remote Buffer Overflow..
07 Jan 08: JustSystem Products "JSFC.DLL" Remote Buffer Overflow Vulnerabili..