PT-2013-1373 · Justsystems · Atok+2
Taku Kudo
·
Publicado
2013-01-18
·
Atualizado
2013-01-29
·
CVE-2009-4738
CVSS v2.0
7.2
Alta
| Vetor | AV:L/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
JustSystems Corporation ATOK versions 2006 through 2009
JustSystems Corporation ATOK flat-rate service
Just Smile 4 with the ATOK Smile module
Description
The issue allows physically proximate users to bypass the screen lock and execute commands with system privileges. This is related to launching external applications, but the exact vectors are unknown.
Recommendations
For JustSystems Corporation ATOK versions 2006 through 2009, update to a version that addresses the issue of bypassing screen lock and executing commands with system privileges.
For JustSystems Corporation ATOK flat-rate service, update to a version that addresses the issue of bypassing screen lock and executing commands with system privileges.
For Just Smile 4 with the ATOK Smile module, update to a version that addresses the issue of bypassing screen lock and executing commands with system privileges.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Atok
Atok Flat-Rate Service
Just Smile 4