Advisories » JustSystem Products "JSFC.DLL" Remote Buffer Overflow Vulnerability
| Release Date: | 07/01/2008 | Severity: | Highly Critical  |
| SecWatch Advisory: | SWID1019967 | Cause: | Boundary error |
| Solution Status: | Vendor Patch | Impact: | Execution of arbitrary code |
| Exploit Status: | None Available | Access Vector: | From remote |
| Affected Software: | Ichitaro 10.x Ichitaro 11.x Ichitaro 12.x Ichitaro 13.x Ichitaro 2004 Ichitaro 2005 Ichitaro 2006 Ichitaro 2007 Ichitaro 9.x Ichitaro for Linux Ichitaro Lite2 Ichitaro viewer 4.x |
||
Description:
A vulnerability in various JustSystem products has been reported, which can be exploited by remote users to potentially compromise a user's system.
A boundary error exists when processing crafted files (such as .JTD) in JSFC.DLL, which can be exploited to cause a buffer overflow and potentially lead to the execution of arbitrary code.
Solution:
The vulnerability has been fixed, apply patches:
http://www.justsystems.com/jp/...ystems.com/jp/info/pd8001.html
Credits:
Hiroshi Ukai, Fourteenfourty Research In
Free Vulnerability Notification Service
Receive free instant and customisable notifications of new vulnerabilities or exploits via e-mail, web or RSS feeds. Click here for more information.
Related Vulnerabilities and Exploits
13 Dec 07: JustSystems Ichitaro "JSGCI.DLL" Document Processing Remote Buffe..
03 Aug 07: JustSystems Ichitaro Document Processing Unspecified Remote Code ..
09 Apr 07: JustSystems Ichitaro Document Processing Unspecified Remote Code ..
21 Aug 06: Ichitaro Document Viewer Document Handling Remote Buffer Overflow..
25 Oct 07: JustSystems Ichitaro Document Processing Multiple Remote Buffer O..