exploitDog

CVE-2007-6436

Опубликовано: 18 дек. 2007

Источник: nvd

CVSS2: 9.3

EPSS Средний

Описание

Stack-based buffer overflow in JSGCI.DLL in JustSystems Ichitaro 2005, 2006, and 2007 allows user-assisted remote attackers to execute arbitrary code via a crafted document, as actively exploited in December 2007 by the Tarodrop.F trojan. NOTE: some of these details are obtained from third party information.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:justsystem:ichitaro:2005:*:*:*:*:*:*:*

cpe:2.3:a:justsystem:ichitaro:2006:*:*:*:*:*:*:*

cpe:2.3:a:justsystem:ichitaro:2007:*:*:*:*:*:*:*

EPSS

Процентиль: 93%

0.10707

Средний

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-6gmh-pj3w-crcf

github

почти 4 года назад

Stack-based buffer overflow in JSGCI.DLL in JustSystems Ichitaro 2005, 2006, and 2007 allows user-assisted remote attackers to execute arbitrary code via a crafted document, as actively exploited in December 2007 by the Tarodrop.F trojan. NOTE: some of these details are obtained from third party information.

EPSS

Процентиль: 93%

0.10707

Средний

9.3 Critical

CVSS2

Дефекты

CWE-119