Advisories » JustSystems Ichitaro "JSGCI.DLL" Document Processing Remote Buffer Overflow Vulnerability
| Release Date: | 13/12/2007 | Severity: | Extremely Critical  |
| SecWatch Advisory: | SWID1019767 | Cause: | Not specified |
| Solution Status: | Unpatched | Impact: | Execution of arbitrary code |
| Exploit Status: | None Available | Access Vector: | From remote |
| Affected Software: | Ichitaro 2005 Ichitaro 2006 Ichitaro 2007 |
||
| Original Advisory: | http://www.symantec.com/security_response/writeup.jsp?docid=2007-12130.. |
||
| References: | FrSIRT/ADV-2007-4213 |
||
| CVE: | CVE-2007-6436 | ||
| Secunia: | SA27992 | ||
Description:
A vulnerability in JustSystems Ichitaro has been reported, which can be exploited by remote users to compromise a vulnerable system.
An unspecified error exists in the "JSGCI.DLL" library when processing crafted documents, which can be exploited to cause a stack-based buffer overflow and execute arbitrary code.
Solution:
There was no vendor-supplied solution at the time of entry.
Credits:
Symantec
Free Vulnerability Notification Service
Receive free instant and customisable notifications of new vulnerabilities or exploits via e-mail, web or RSS feeds. Click here for more information.
Related Vulnerabilities and Exploits
03 Aug 07: JustSystems Ichitaro Document Processing Unspecified Remote Code ..
09 Apr 07: JustSystems Ichitaro Document Processing Unspecified Remote Code ..
21 Aug 06: Ichitaro Document Viewer Document Handling Remote Buffer Overflow..
07 Jan 08: JustSystem Products "JSFC.DLL" Remote Buffer Overflow Vulnerabili..
25 Oct 07: JustSystems Ichitaro Document Processing Multiple Remote Buffer O..