Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1331

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2011-1331
Last Modified 29 Oct 2011 11:35:12
Published 18 Jul 2011 06:55:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-1331

Summary

JustSystems Ichitaro 2005 through 2011, Ichitaro Government 6, Ichitaro Government 2006 through 2010, Ichitaro Portable, Ichitaro Pro, and Ichitaro Viewer allow remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a crafted document, as exploited in the wild in early 2011.

Vulnerable Systems

Application

  • Justsystems Ichitaro 2005

  • Justsystems Ichitaro 2006

  • Justsystems Ichitaro 2007

  • Justsystems Ichitaro 2008

  • Justsystems Ichitaro 2009

  • Justsystems Ichitaro 2010

  • Justsystems Ichitaro 2011

  • Justsystems Ichitaro 6

  • Justsystems Ichitaro Portable

  • Justsystems Ichitaro Pro

  • Justsystems Ichitaro Viewer

  • Justsystems Ichitaro Viewer 19.0.1.0

  • Justsystems Ichitaro Viewer 19.0.2.0

  • Justsystems Ichitaro Viewer 19.0.3.0

  • Justsystems Ichitaro Viewer 20.0.2.0

  • Justsystems Ichitaro Viewer 5.1.3.0


References

CONFIRM - http://www.justsystems.com/jp/info/js11001.html

XF - ichitaro-unspec-bo(68072)

MISC - http://www.symantec.com/connect/blogs/targeted-attacks-2011-using-ichitaro-zero-day-vulnerability

BID - 48283

SECUNIA - 44956

JVNDB - JVNDB-2011-000043

JVN - JVN#87239473


Last Updated: 27 May 2016 10:56:18