Vulnerability Details CVE-2011-1331
JustSystems Ichitaro 2005 through 2011, Ichitaro Government 6, Ichitaro Government 2006 through 2010, Ichitaro Portable, Ichitaro Pro, and Ichitaro Viewer allow remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a crafted document, as exploited in the wild in early 2011.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.028
EPSS Ranking 85.5%
CVSS Severity
CVSS v2 Score 9.3
References
- http://jvn.jp/en/jp/JVN87239473/index.html
- http://jvndb.jvn.jp/jvndb/JVNDB-2011-000043
- http://secunia.com/advisories/44956
- http://www.justsystems.com/jp/info/js11001.html
- http://www.securityfocus.com/bid/48283
- http://www.symantec.com/connect/blogs/targeted-attacks-2011-using-ichitaro-zero-day-vulnerability
- https://exchange.xforce.ibmcloud.com/vulnerabilities/68072
- http://jvn.jp/en/jp/JVN87239473/index.html
- http://jvndb.jvn.jp/jvndb/JVNDB-2011-000043
- http://secunia.com/advisories/44956
- http://www.justsystems.com/jp/info/js11001.html
- http://www.securityfocus.com/bid/48283
- http://www.symantec.com/connect/blogs/targeted-attacks-2011-using-ichitaro-zero-day-vulnerability
- https://exchange.xforce.ibmcloud.com/vulnerabilities/68072
Products affected by CVE-2011-1331
-
cpe:2.3:a:justsystems:ichitaro:2005
-
cpe:2.3:a:justsystems:ichitaro:2006
-
cpe:2.3:a:justsystems:ichitaro:2007
-
cpe:2.3:a:justsystems:ichitaro:2008
-
cpe:2.3:a:justsystems:ichitaro:2009
-
cpe:2.3:a:justsystems:ichitaro:2010
-
cpe:2.3:a:justsystems:ichitaro:2011
-
cpe:2.3:a:justsystems:ichitaro:6
-
cpe:2.3:a:justsystems:ichitaro_portable:-
-
cpe:2.3:a:justsystems:ichitaro_pro:*
-
cpe:2.3:a:justsystems:ichitaro_viewer:-
-
cpe:2.3:a:justsystems:ichitaro_viewer:19.0.1.0
-
cpe:2.3:a:justsystems:ichitaro_viewer:19.0.2.0
-
cpe:2.3:a:justsystems:ichitaro_viewer:19.0.3.0
-
cpe:2.3:a:justsystems:ichitaro_viewer:20.0.2.0
-
cpe:2.3:a:justsystems:ichitaro_viewer:5.1.3.0