Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2007-5687

Опубликовано: 28 окт. 2007
Источник: nvd
CVSS2: 9.3
EPSS Средний

Описание

Multiple buffer overflows in the rich text processing functionality in JustSystems Ichitaro 2004 through 2007, 11 through 13, and other versions allow remote attackers to execute arbitrary code via a long (1) pard field or (2) font name in the fcharset0 field, which is not properly handled in (a) JSTARO4.OCX; or (3) a long title, which is not properly handled by (b) TJSVDA.DLL.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:justsystem:ichitaro:11.0:*:*:*:*:*:*:*
cpe:2.3:a:justsystem:ichitaro:12.0:*:*:*:*:*:*:*
cpe:2.3:a:justsystem:ichitaro:13.0:*:*:*:*:*:*:*
cpe:2.3:a:justsystem:ichitaro:2004:*:*:*:*:*:*:*
cpe:2.3:a:justsystem:ichitaro:2005:*:*:*:*:*:*:*
cpe:2.3:a:justsystem:ichitaro:2006:*:*:*:*:*:*:*
cpe:2.3:a:justsystem:ichitaro:linux:*:*:*:*:*:*:*
cpe:2.3:a:justsystem:ichitaro:lite2:*:*:*:*:*:*:*

EPSS

Процентиль: 95%
0.17528
Средний

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

github логотип

GHSA-5pm4-7676-v58f

github
почти 4 года назад

Multiple buffer overflows in the rich text processing functionality in JustSystems Ichitaro 2004 through 2007, 11 through 13, and other versions allow remote attackers to execute arbitrary code via a long (1) pard field or (2) font name in the fcharset0 field, which is not properly handled in (a) JSTARO4.OCX; or (3) a long title, which is not properly handled by (b) TJSVDA.DLL.

EPSS

Процентиль: 95%
0.17528
Средний

9.3 Critical

CVSS2

Дефекты

CWE-119