MidnightBSD

Advisories for justsystems

CVE-2009-4737 HIGH

Stack-based buffer overflow in JustSystems Corporation Ichitaro 13, 2004 through 2009, Viewer 2009 19.0.1.0 and earlier, and other versions allows context-dependent attackers to execute arbitrary code via a crafted Rich Text File (RTF), related to "pvpara ffooter."

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
justsystems ichitaro_viewer 20.0.2.0
justsystems ichitaro 2004
justsystems ichitaro 2007
justsystems ichitaro 13
justsystems ichitaro bungei
justsystems ichitaro 2006
justsystems ichitaro_viewer 19.0.1.0
justsystems ichitaro 2009
justsystems ichitaro 2005
justsystems ichitaro 2008
CVE-2010-1424 HIGH

Unspecified vulnerability in JustSystems Ichitaro and Ichitaro Government 2006 through 2010 allows user-assisted remote attackers to execute arbitrary code via a crafted font file.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
justsystems ichitaro 2007
justsystems ichitaro 2006
justsystems ichitaro 2009
justsystems ichitaro 2010
justsystems ichitaro 2008
CVE-2010-2152 HIGH

Unspecified vulnerability in JustSystems Ichitaro 2004 through 2009, Ichitaro Government 2006 through 2009, and Just School 2008 and 2009 allows remote attackers to execute arbitrary code via unknown vectors related to "product character attribute processing" for a document.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
justsystems ichitaro 2004
justsystems ichitaro 2007
justsystems ichitaro 2006
justsystems ichitaro 2009
justsystems just_school 2008
justsystems just_school 2009
justsystems ichitaro 2005
justsystems ichitaro 2008
CVE-2010-3915 HIGH

Unspecified vulnerability in JustSystems Ichitaro and Ichitaro Government allows remote attackers to execute arbitrary code via a crafted document, a different vulnerability than CVE-2010-3916.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
justsystems ichitaro *
justsystems ichitaro 2007
justsystems ichitaro 2009
justsystems ichitaro 2008
CVE-2010-3916 HIGH

Unspecified vulnerability in JustSystems Ichitaro and Ichitaro Government allows remote attackers to execute arbitrary code via a crafted document, a different vulnerability than CVE-2010-3915.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
justsystems ichitaro *
justsystems ichitaro 2007
justsystems ichitaro 2009
justsystems ichitaro 2008
CVE-2011-1331 HIGH

JustSystems Ichitaro 2005 through 2011, Ichitaro Government 6, Ichitaro Government 2006 through 2010, Ichitaro Portable, Ichitaro Pro, and Ichitaro Viewer allow remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a crafted document, as exploited in the wild in early 2011.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
justsystems ichitaro 6
justsystems ichitaro 2007
justsystems ichitaro 2006
justsystems ichitaro 2010
justsystems ichitaro_pro *
justsystems ichitaro 2011
justsystems ichitaro_viewer 20.0.2.0
justsystems ichitaro_portable *
justsystems ichitaro_viewer 19.0.3.0
justsystems ichitaro_viewer 19.0.1.0
justsystems ichitaro 2009
justsystems ichitaro 2005
justsystems ichitaro_viewer 5.1.3.0
justsystems ichitaro 2008
justsystems ichitaro_viewer *
justsystems ichitaro_viewer 19.0.2.0
CVE-2012-0269 HIGH

Buffer overflow in JustSystems Ichitaro 2011 Sou, Ichitaro 2006 through 2011, Ichitaro Government 2006 through 2010, Ichitaro Portable with oreplug, Ichitaro Viewer, JUST School, JUST School 2009 and 2010, JUST Jump 4, JUST Frontier, oreplug, Shuriken Pro4, Shuriken 2007 through 2010, Shuriken Pro4 Corporate Edition, Shuriken CE/2007 through CE/2009 Corporate Edition, Shuriken 2010 Corporate Edition, Rekishimail Sengokubusho no missho, and Bakumatsushishi no missho allows remote attackers to execute arbitrary code via a crafted image file.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
justsystems just_jump 4
justsystems shuriken 2010
justsystems rekishimail_bakumatsushishi_no_missho -
justsystems ichitaro 2007
justsystems just_school 2010
justsystems shuriken 2009
justsystems ichitaro 2006
justsystems ichitaro 2010
justsystems just_school 2009
justsystems ichitaro_viewer -
justsystems shuriken_pro 4
justsystems oreplug -
justsystems ichitaro 2011
justsystems just_frontier -
justsystems just_school -
justsystems shuriken 2008
justsystems shuriken 2007
justsystems ichitaro 2009
justsystems ichitaro_portable_with_oreplug -
justsystems ichitaro 2008
justsystems rekishimail_sengokubusho_no_missho -
CVE-2012-1242 MEDIUM

Untrusted search path vulnerability in JustSystems Ichitaro 2011 Sou, Ichitaro 2006 through 2011, Ichitaro Government 2006 through 2010, Ichitaro Portable with oreplug, Ichitaro Viewer, JUST School, JUST School 2009 and 2010, JUST Jump 4, JUST Frontier, and oreplug allows local users to gain privileges via a Trojan horse DLL in the current working directory.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
justsystems just_jump 4
justsystems ichitaro 2007
justsystems just_school 2010
justsystems ichitaro 2006
justsystems ichitaro 2010
justsystems just_school 2009
justsystems ichitaro_viewer -
justsystems oreplug -
justsystems ichitaro 2011
justsystems just_frontier -
justsystems just_school -
justsystems ichitaro 2009
justsystems ichitaro_portable_with_oreplug -
justsystems ichitaro 2008
CVE-2013-0707 HIGH

Unspecified vulnerability in JustSystems Ichitaro 2006 and 2007, Ichitaro Government 2006 and 2007, Ichitaro Portable with oreplug, Hanako 2006 through 2013, Hanako Police, Hanako Police 3, and Hanako Police 2010 allows remote attackers to execute arbitrary code via a crafted file.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
justsystems hanako 2009
justsystems hanako 2006
justsystems hanako 2007
justsystems hanako_police -
justsystems hanako_police 2010
justsystems ichitaro 2007
justsystems hanako 2012
justsystems ichitaro 2006
justsystems hanako 2013
justsystems hanako 2011
justsystems hanako 2010
justsystems hanako 2008
justsystems hanako_police3 -
justsystems ichitaro_portable -
CVE-2013-3644 HIGH

Unspecified vulnerability in JustSystems Ichitaro 2006 through 2013; Ichitaro Pro through 2; Ichitaro Government 6, 7, and 2006 through 2010; Ichitaro Portable with oreplug; Ichitaro Viewer; and Ichitaro JUST School through 2010 allows remote attackers to execute arbitrary code via a crafted document.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
justsystems ichitaro_just_school -
justsystems ichitaro 6
justsystems ichitaro 2007
justsystems ichitaro 2006
justsystems ichitaro 2010
justsystems ichitaro_viewer -
justsystems ichitaro 2013
justsystems ichitaro 2011
justsystems ichitaro 2009
justsystems ichitaro 7
justsystems ichitaro 2012
justsystems ichitaro 2008
justsystems ichitaro_portable -
CVE-2013-5990 HIGH

Unspecified vulnerability in JustSystems Ichitaro 2006 through 2011; Ichitaro Government 6, 7, and 2006 through 2010; Ichitaro 2011 Sou; Ichitaro 2012 Shou; Ichitaro 2013 Gen and Gen Trial Edition; Ichitaro Pro; Ichitaro Pro 2 and Pro 2 Trial Edition; Ichitaro Viewer; and Ichitaro Portable with oreplug allows remote attackers to execute arbitrary code via a crafted document.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
justsystems ichitaro 6
justsystems ichitaro 2007
justsystems ichitaro 2006
justsystems ichitaro 2010
justsystems ichitaro_viewer -
justsystems ichitaro_pro -
justsystems ichitaro 2013
justsystems ichitaro 2011
justsystems ichitaro_pro 2
justsystems ichitaro 2009
justsystems ichitaro 7
justsystems ichitaro 2012
justsystems ichitaro_portable_with_oreplug -
justsystems ichitaro 2008
CVE-2014-0810 HIGH

Unspecified vulnerability in JustSystems Sanshiro 2007 before update 3, 2008 before update 5, 2009 before update 6, and 2010 before update 6, and Sanshiro Viewer before 2.0.2.0, allows remote attackers to execute arbitrary code via a crafted document.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
justsystems sanshiro viewer
justsystems sanshiro 2007
justsystems sanshiro 2008
justsystems sanshiro 2009
justsystems sanshiro 2010
CVE-2014-2003 HIGH

JustSystems JUST Online Update, as used in Ichitaro through 2014 and other products, does not properly validate signatures of update modules, which allows remote attackers to spoof modules and execute arbitrary code via a crafted signature.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
justsystems ichitaro 2004
justsystems just_online_update -
justsystems ichitaro 2007
justsystems ichitaro 13
justsystems ichitaro 2006
justsystems ichitaro 2010
justsystems ichitaro 12
justsystems ichitaro 2013
justsystems ichitaro 2011
justsystems ichitaro *
justsystems ichitaro 10
justsystems ichitaro 2009
justsystems ichitaro 2012
justsystems ichitaro 2005
justsystems ichitaro 2008
justsystems ichitaro 11
CVE-2014-7247 HIGH

Unspecified vulnerability in JustSystems Ichitaro 2008 through 2011; Ichitaro Government 6, 7, 2008, 2009, and 2010; Ichitaro Pro; Ichitaro Pro 2; Ichitaro 2011 Sou; Ichitaro 2012 Shou; Ichitaro 2013 Gen; and Ichitaro 2014 Tetsu allows remote attackers to execute arbitrary code via a crafted file.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-19,

Products Affected

Vendor Product Version
justsystems ichitaro_pro 2
justsystems ichitaro 6
justsystems ichitaro 2014
justsystems ichitaro 2009
justsystems ichitaro 2010
justsystems ichitaro 7
justsystems ichitaro 2012
justsystems ichitaro_pro -
justsystems ichitaro 2008
justsystems ichitaro 2013
justsystems ichitaro 2011
CVE-2017-10870 MEDIUM

Memory corruption vulnerability in Rakuraku Hagaki (Rakuraku Hagaki 2018, Rakuraku Hagaki 2017, Rakuraku Hagaki 2016) and Rakuraku Hagaki Select for Ichitaro (Ichitaro 2017, Ichitaro 2016, Ichitaro 2015, Ichitaro Pro3, Ichitaro Pro2, Ichitaro Pro, Ichitaro 2011, Ichitaro Government 8, Ichitaro Government 7, Ichitaro Government 6 and Ichitaro 2017 Trial version) allows attackers to execute arbitrary code with privileges of the application via specially crafted file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
justsystems ichitaro_pro_2 -
justsystems ichitaro_pro_3 -
justsystems ichitaro_2018 -
justsystems ichitaro_pro_2011 -
justsystems ichitaro_government_6 -
justsystems ichitaro_government_7 -
justsystems ichitaro_pro -
justsystems ichitaro_2016 -
justsystems easy_postcard_2018 -
justsystems easy_postcard_2016 -
justsystems ichitaro_2017 -
justsystems ichitaro_government_8 -
justsystems easy_postcard_2017 -
justsystems ichitaro_2017_trial_version -
CVE-2017-2154 MEDIUM

Untrusted search path vulnerability in Hanako 2017, Hanako 2016, Hanako 2015, Hanako Pro 3, JUST Office 3 [Standard], JUST Office 3 [Eco Print Package], JUST Office 3 & Tri-De DataProtect Package, JUST Government 3, JUST Jump Class 2, JUST Frontier 3, JUST School 6 Premium, Hanako Police 5, JUST Police 3, Hanako 2017 trial version allows remote attackers to gain privileges via a Trojan horse DLL in an unspecified directory.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
justsystems hanako_police 5
justsystems hanako 2016
justsystems just_government 3
justsystems just_jump_class 2
justsystems just_frontier 3
justsystems just_office 3
justsystems hanako 2015
justsystems hanako_pro 3
justsystems just_school 6
justsystems hanako 2017
justsystems just_police 3
CVE-2017-2789 HIGH

When copying filedata into a buffer, JustSystems Ichitaro Office 2016 Trial will calculate two values to determine how much data to copy from the document. If both of these values are larger than the size of the buffer, the application will choose the smaller of the two and trust it to copy data from the file. This value is larger than the buffer size, which leads to a heap-based buffer overflow. This overflow corrupts an offset in the heap used in pointer arithmetic for writing data and can lead to code execution under the context of the application.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
justsystems ichitaro *
CVE-2017-2790 HIGH

When processing a record type of 0x3c from a Workbook stream from an Excel file (.xls), JustSystems Ichitaro Office trusts that the size is greater than zero, subtracts one from the length, and uses this result as the size for a memcpy. This results in a heap-based buffer overflow and can lead to code execution under the context of the application.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
justsystems ichitaro *
CVE-2017-2791 MEDIUM

JustSystems Ichitaro 2016 Trial contains a vulnerability that exists when trying to open a specially crafted PowerPoint file. Due to the application incorrectly handling the error case for a function's result, the application will use this result in a pointer calculation for reading file data into. Due to this, the application will read data from the file into an invalid address thus corrupting memory. Under the right conditions, this can lead to code execution under the context of the application.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
justsystems ichitaro 2016
CVE-2022-1542 LOW

The HPB Dashboard WordPress plugin through 1.3.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
justsystems hpb_dashboard *
CVE-2022-36344

An unquoted search path vulnerability exists in 'JustSystems JUST Online Update for J-License' bundled with multiple products for corporate users as in Ichitaro through Pro5 and others. Since the affected product starts another program with an unquoted file path, a malicious file may be executed with the privilege of the Windows service if it is placed in a certain path. Affected products are bundled with the following product series: Office and Office Integrated Software, ATOK, Hanako, JUST PDF, Shuriken, Homepage Builder, JUST School, JUST Smile Class, JUST Smile, JUST Frontier, JUST Jump, and Tri-De DetaProtect.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
justsystems just_smile_6 *
justsystems hanako_pro_4 *
justsystems hanako_police_7 *
justsystems just_government_5 *
justsystems just_jump_8 *
justsystems ichitaro_pro_3 *
justsystems just_jump_class *
justsystems just_pdf_4 *
justsystems just_police_4 *
justsystems just_smile_class_2 *
justsystems ichitaro_pro_5 *
justsystems hanako_pro_5 *
justsystems just_police_3 *
justsystems just_smile_8 *
justsystems just_medical_3 *
justsystems just_government_2 *
justsystems just_jump_class_2 *
justsystems just_focus_3 *
justsystems just_smile_7 *
justsystems just_office_4 *
justsystems atok_pro_3 *
justsystems just_calc_3 *
justsystems shuriken_pro_7 *
justsystems hanako_police_6 *
justsystems just_frontier_3 *
justsystems tri-de_dataprotect *
justsystems just_office_5 *
justsystems just_pdf_3 *
justsystems ichitaro_pro_4 *
justsystems atok_pro_5 *
justsystems just_note_4 *
justsystems just_school_6 *
justsystems hanako_police_5 *
justsystems homepage_builder_20 *
justsystems just_calc_5 *
justsystems just_government_3 *
justsystems just_police_5 *
justsystems just_government_4 *
justsystems just_office_2 *
justsystems atok_pro_4 *
justsystems just_medical_5 *
justsystems just_medical_4 *
justsystems just_medical_2 *
justsystems just_pdf_5 *
justsystems homepage_builder_22 *
justsystems just_calc_4 *
justsystems just_note_3 *
justsystems just_police_2 *
justsystems ichitaro_government_9 *
justsystems just_office_3 *
justsystems just_focus_4 *
justsystems just_note_5 *
justsystems homepage_builder_21 *
justsystems ichitaro_government_8 -
justsystems hanako_pro_3 *
justsystems shuriken_pro_6 *
justsystems atok_medical_2 *
justsystems atok_medical_3 *
justsystems ichitaro_government_10 *
justsystems just_school_7 *
CVE-2022-43664

A use-after-free vulnerability exists within the way Ichitaro Word Processor 2022, version 1.0.1.57600, processes protected documents. A specially crafted document can trigger reuse of freed memory, which can lead to further memory corruption and potentially result in arbitrary code execution. An attacker can provide a malicious document to trigger this vulnerability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
talos-cna@cisco.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
justsystems ichitaro_2022 1.0.1.57600
CVE-2022-45115

A buffer overflow vulnerability exists in the Attribute Arena functionality of Ichitaro 2022 1.0.1.57600. A specially crafted document can lead to memory corruption. An attacker can provide a malicious file to trigger this vulnerability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
talos-cna@cisco.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
justsystems ichitaro_2022 1.0.1.57600
CVE-2023-22291

An invalid free vulnerability exists in the Frame stream parser functionality of Ichitaro 2022 1.0.1.57600. A specially crafted document can lead to an attempt to free a stack pointer, which causes memory corruption. An attacker can provide a malicious file to trigger this vulnerability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
talos-cna@cisco.com 7.0 HIGH CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H 1.0 5.9

Products Affected

Vendor Product Version
justsystems ichitaro_2022 1.0.1.57600
CVE-2023-22660

A heap-based buffer overflow vulnerability exists in the way Ichitaro version 2022 1.0.1.57600 processes certain LayoutBox stream record types. A specially crafted document can cause a buffer overflow, leading to memory corruption, which can result in arbitrary code execution.To trigger this vulnerability, the victim would need to open a malicious, attacker-created document.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
talos-cna@cisco.com 7.0 HIGH CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H 1.0 5.9

Products Affected

Vendor Product Version
justsystems ichitaro_2022 1.0.1.57600
CVE-2023-34366

A use-after-free vulnerability exists in the Figure stream parsing functionality of Ichitaro 2023 1.0.1.59372. A specially crafted document can cause memory corruption, resulting in arbitrary code execution. Victim would need to open a malicious file to trigger this vulnerability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
talos-cna@cisco.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
justsystems just_government_4 -
justsystems ichitaro_pro_3 -
justsystems ichitaro_pro_5 -
justsystems just_police_3 -
justsystems ichitaro_2023 1.0.1.59372
justsystems just_government_3 -
justsystems ichitaro_government_10 -
justsystems easy_postcard_max -
justsystems ichitaro_2022 -
justsystems ichitaro_government_9 -
justsystems just_government_5 -
justsystems just_office_5 -
justsystems ichitaro_2021 -
justsystems ichitaro_pro_4 -
justsystems just_police_5 -
justsystems just_office_4 -
justsystems ichitaro_government_8 -
justsystems just_office_3 -
justsystems just_police_4 -
CVE-2023-35126

An out-of-bounds write vulnerability exists within the parsers for both the "DocumentViewStyles" and "DocumentEditStyles" streams of Ichitaro 2023 1.0.1.59372 when processing types 0x0000-0x0009 of a style record with the type 0x2008. A specially crafted document can cause memory corruption, which can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
talos-cna@cisco.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
justsystems just_government_4 -
justsystems ichitaro_pro_3 -
justsystems ichitaro_pro_5 -
justsystems just_police_3 -
justsystems ichitaro_2023 1.0.1.59372
justsystems just_government_3 -
justsystems ichitaro_government_10 -
justsystems easy_postcard_max -
justsystems ichitaro_2022 -
justsystems ichitaro_government_9 -
justsystems just_government_5 -
justsystems just_office_5 -
justsystems ichitaro_2021 -
justsystems ichitaro_pro_4 -
justsystems just_police_5 -
justsystems just_office_4 -
justsystems ichitaro_government_8 -
justsystems just_office_3 -
justsystems just_police_4 -
CVE-2023-38127

An integer overflow exists in the "HyperLinkFrame" stream parser of Ichitaro 2023 1.0.1.59372. A specially crafted document can cause the parser to make an under-sized allocation, which can later allow for memory corruption, potentially resulting in arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9
talos-cna@cisco.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
justsystems just_government_4 -
justsystems ichitaro_pro_3 -
justsystems ichitaro_pro_5 -
justsystems just_police_3 -
justsystems ichitaro_2023 1.0.1.59372
justsystems just_government_3 -
justsystems ichitaro_government_10 -
justsystems easy_postcard_max -
justsystems ichitaro_2022 -
justsystems ichitaro_government_9 -
justsystems just_government_5 -
justsystems just_office_5 -
justsystems ichitaro_2021 -
justsystems ichitaro_pro_4 -
justsystems just_police_5 -
justsystems just_office_4 -
justsystems ichitaro_government_8 -
justsystems just_office_3 -
justsystems just_police_4 -
CVE-2023-38128

An out-of-bounds write vulnerability exists in the "HyperLinkFrame" stream parser of Ichitaro 2023 1.0.1.59372. A specially crafted document can cause a type confusion, which can lead to memory corruption and eventually arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
talos-cna@cisco.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
justsystems just_government_4 -
justsystems ichitaro_pro_3 -
justsystems ichitaro_pro_5 -
justsystems just_police_3 -
justsystems ichitaro_2023 1.0.1.59372
justsystems just_government_3 -
justsystems ichitaro_government_10 -
justsystems easy_postcard_max -
justsystems ichitaro_2022 -
justsystems ichitaro_government_9 -
justsystems just_government_5 -
justsystems just_office_5 -
justsystems ichitaro_2021 -
justsystems ichitaro_pro_4 -
justsystems just_police_5 -
justsystems just_office_4 -
justsystems ichitaro_government_8 -
justsystems just_office_3 -
justsystems just_police_4 -