Published:2010/11/04  Last Updated:2010/11/04

JVN#19173793
Ichitaro series vulnerable to arbitrary code execution

Overview

The "Ichitaro" series word processing software, from JustSystems Corporation contains a vulnerability that may allow arbitrary code execution.

This vulnerability differs from JVN#01948274, and other issues that were previously published on JVN.

Products Affected

  • Ichitaro
  • Ichitaro Government
For more information, refer to the developer's website.

Description

The "Ichitaro" series word processing software, from JustSystems Corporation contains a vulnerability that may allow arbitrary code execution.

Impact

When opening a specially crafted file locally or through a website, an attacker may be able to execute arbitrary code.

Solution

Update the Software
Update to the latest version according to the information provided by the developer.

References

  1. IPA
    Security Alert for Vulnerability in the Ichitaro Series

JPCERT/CC Addendum

Vulnerability Analysis by JPCERT/CC

Credit

Other Information

JPCERT Alert
JPCERT Reports
CERT Advisory
CPNI Advisory
TRnotes
CVE CVE-2010-3915
JVN iPedia JVNDB-2010-000052

Update History

2010/11/04
Information under the sections "References" were modified.