Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0807

Overview

Vulnerability Score 5.1 5.1
CVE Id CVE-2006-0807
Last Modified 02 Aug 2011 12:00:00
Published 20 Feb 2006 09:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2006-0807

Summary

Stack-based buffer overflow in NJStar Chinese and Japanese Word Processor 4.x and 5.x before 5.10 allows user-assisted attackers to execute arbitrary code via font names in NJStar (.njx) documents.

Vulnerable Systems

Application

  • Njstar Chinese Word Processor 5.01.41108

  • Njstar Japanese Word Processor 5.01.41108


References

BUGTRAQ - 20060220 Secunia Research: NJStar Word Processor Font Name Buffer Overflow

MISC - http://secunia.com/secunia_research/2006-5/advisory/

SECUNIA - 18702

XF - njstar-font-name-bo(24773)

VUPEN - ADV-2006-0670

BID - 16737

OSVDB - 23354

CONFIRM - http://www.njstar.com/njstar/japanese/

CONFIRM - http://www.njstar.com/njstar/chinese/

SECTRACK - 1015649

SREASON - 461


Last Updated: 27 May 2016 10:41:48