Vulnerabilities > CVE-2013-5990 - Remote Code Execution vulnerability in Multiple Ichitaro Products

CVSS 9.3 - CRITICAL

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

justsystems

critical

NVD

Published: 2013-11-13

Updated: 2013-11-14

Summary

Unspecified vulnerability in JustSystems Ichitaro 2006 through 2011; Ichitaro Government 6, 7, and 2006 through 2010; Ichitaro 2011 Sou; Ichitaro 2012 Shou; Ichitaro 2013 Gen and Gen Trial Edition; Ichitaro Pro; Ichitaro Pro 2 and Pro 2 Trial Edition; Ichitaro Viewer; and Ichitaro Portable with oreplug allows remote attackers to execute arbitrary code via a crafted document.

Vulnerable Configurations

Part	Description	Count
Application	Justsystems Justsystems Ichitaro PRO - Justsystems Ichitaro PRO 2 Justsystems Ichitaro Portable With Oreplug - Justsystems Ichitaro 2012 Justsystems Ichitaro 2013 Justsystems Ichitaro 2011 Justsystems Ichitaro 6 Justsystems Ichitaro 7 Justsystems Ichitaro 2006 Justsystems Ichitaro 2007 Justsystems Ichitaro 2008 Justsystems Ichitaro 2009 Justsystems Ichitaro 2010 Justsystems Ichitaro Viewer -	22

The Hacker News

id	THN:1A9D68675814428FB1A1DD8C3778BCF1
last seen	2017-01-08
modified	2013-11-15
published	2013-11-15
reporter	Mohit Kumar
source	http://thehackernews.com/2013/11/Japanese-Ichitaro-zero-day-vulnerability-CVE-2013-5990.html
title	Japanese word processor 'Ichitaro' zero-day attack discovered in the wild

Summary

Vulnerable Configurations

The Hacker News

References