Published:2006/12/05 Last Updated:2008/05/21
JVN#47272891
Hanako buffer overflow vulnerability
Overview
Hanako, graphics authoring software from Justsystems, contains a buffer overflow vulnerability.
Products Affected
- Hanako 2004
- Hanako 2005
- Hanako 2006
- Hanako Viewer 1.0
Description
Impact
An arbitrary code could be executed on the PCs of Hanako user, if the user opens a specially crafted Hanako file sent by a remote attacker.
Solution
References
JPCERT/CC Addendum
Credit
Yuu Arai of LAC Co., Ltd. reported this vulnerability to IPA.
JPCERT/CC coordinated with the vendors under Information Security Early Warning Partnership.
Other Information
| JPCERT Alert | |
| JPCERT Reports | |
| CERT Advisory | |
| CPNI Advisory | |
| TRnotes | |
| CVE | |
| JVN iPedia |
JVNDB-2006-000812 |