PT-2009-3635 · Justsystems · Justsystems Ichitaro+2

Published

2009-03-24

Updated

2017-08-17

CVE-2009-1054

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions JustSystems Ichitaro versions 13, 2004 through 2008 JustSystems Ichitaro Lite2 JustSystems Ichitaro viewer version 5.1.5.0 and earlier

Description The issue allows remote attackers to execute arbitrary code via a crafted file. It has been exploited in the wild by Trojan.Tarodrop.H in March 2009.

Recommendations For JustSystems Ichitaro versions 13, 2004 through 2008, update to a version that is not affected by this issue. For JustSystems Ichitaro Lite2, update to a version that is not affected by this issue. For JustSystems Ichitaro viewer version 5.1.5.0 and earlier, update to a version that is not affected by this issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2009-1054

Affected Products

Justsystems Ichitaro

Justsystems Ichitaro Lite2

Justsystems Ichitaro Viewer

PT-2009-3635 · Justsystems · Justsystems Ichitaro+2

CVE-2009-1054

Related Identifiers

Affected Products

References · 7