ID CVE-2013-5990
Summary Unspecified vulnerability in JustSystems Ichitaro 2006 through 2011; Ichitaro Government 6, 7, and 2006 through 2010; Ichitaro 2011 Sou; Ichitaro 2012 Shou; Ichitaro 2013 Gen and Gen Trial Edition; Ichitaro Pro; Ichitaro Pro 2 and Pro 2 Trial Edition; Ichitaro Viewer; and Ichitaro Portable with oreplug allows remote attackers to execute arbitrary code via a crafted document.
References
Vulnerable Configurations
  • cpe:2.3:a:justsystems:ichitaro_pro
    cpe:2.3:a:justsystems:ichitaro_pro
  • cpe:2.3:a:justsystems:ichitaro_pro:2
    cpe:2.3:a:justsystems:ichitaro_pro:2
  • cpe:2.3:a:justsystems:ichitaro_pro:2:-:trial
    cpe:2.3:a:justsystems:ichitaro_pro:2:-:trial
  • cpe:2.3:a:justsystems:ichitaro_portable_with_oreplug
  • JustSystems Ichitaro 2012 Shou Edition
    cpe:2.3:a:justsystems:ichitaro:2012:-:shou
  • JustSystems Ichitaro 2013 Gen Edition
    cpe:2.3:a:justsystems:ichitaro:2013:-:gen
  • JustSystems Ichitaro 2013 Gen Edition Trial Version
    cpe:2.3:a:justsystems:ichitaro:2013:-:gen_trial
  • JustSystems Ichitaro Viewer
    cpe:2.3:a:justsystems:ichitaro_viewer
  • JustSystems Ichitaro 2011 Sou Edition
    cpe:2.3:a:justsystems:ichitaro:2011:-:sou
  • cpe:2.3:a:justsystems:ichitaro:2006:-:government
  • JustSystems Ichitaro Government Edition 2007
    cpe:2.3:a:justsystems:ichitaro:2007:-:government
  • cpe:2.3:a:justsystems:ichitaro:2008:-:government
  • cpe:2.3:a:justsystems:ichitaro:2009:-:government
  • cpe:2.3:a:justsystems:ichitaro:2010:-:government
  • JustSystems Ichitaro Government 6
    cpe:2.3:a:justsystems:ichitaro:6:-:government
  • JustSystems Ichitaro Government 7
    cpe:2.3:a:justsystems:ichitaro:7:-:government
  • cpe:2.3:a:justsystems:ichitaro:2006
  • cpe:2.3:a:justsystems:ichitaro:2007
  • cpe:2.3:a:justsystems:ichitaro:2008
  • JustSystems Ichitaro 2009
    cpe:2.3:a:justsystems:ichitaro:2009
  • cpe:2.3:a:justsystems:ichitaro:2010
  • JustSystems Ichitaro 2011
    cpe:2.3:a:justsystems:ichitaro:2011
CVSS
Base: 9.3 (as of 14-11-2013 - 10:03)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
refmap via4
confirm http://www.justsystems.com/jp/info/js13003.html
jvn JVN#44999463
jvndb JVNDB-2013-000103
the hacker news via4
id THN:1A9D68675814428FB1A1DD8C3778BCF1
last seen 2017-01-08
modified 2013-11-15
published 2013-11-15
reporter Mohit Kumar
source http://thehackernews.com/2013/11/Japanese-Ichitaro-zero-day-vulnerability-CVE-2013-5990.html
title Japanese word processor 'Ichitaro' zero-day attack discovered in the wild
Last major update 14-11-2013 - 12:46
Published 13-11-2013 - 10:55
Back to Top