CVE-2017-2790

Name of the Vulnerable Software and Affected Versions JustSystems Ichitaro Office (affected versions not specified)

Description The issue occurs when processing a specific record type from an Excel file, leading to a heap-based buffer overflow. This can result in code execution under the context of the application. The overflow happens because the application trusts that the size is greater than zero, subtracts one from the length, and uses this result as the size for a memcpy.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.