Summary
This host is installed with JustSystems Ichitaro product(s) and is prone to denial of service vulnerability.
Impact
Successful exploitation will let attackers to execute arbitrary code on the vulnerable system or cause the application to crash.
Impact Level: System/Application
Solution
Apply the patch for JustSystems Ichitaro from below link http://www.justsystems.com/jp/info/js11001.html
Upgrade to JustSystems Ichitaro viewer version 20.0.4.0 or later For updates refer to http://www.justsystems.com/jp/info/js11001.html
*****
NOTE: Ignore this warning, if patch is applied already.
*****
Insight
The flaw is due to the error while parsing certain documents.
Affected
JustSystems Ichitaro version 2005 through 2011
JustSystems Ichitaro viewer version prior to 20.0.4.0
References
- http://jvn.jp/en/jp/JVN87239473/index.html
- http://jvndb.jvn.jp/en/contents/2011/JVNDB-2011-000043.html
- http://secunia.com/advisories/44956
- http://www.justsystems.com/jp/info/js11001.html
- http://www.symantec.com/connect/blogs/targeted-attacks-2011-using-ichitaro-zero-day-vulnerability
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2011-1331 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- ClamAV Multiple Vulnerabilities (Win)
- Colasoft Capsa Malformed SNMP V1 Packet Remote Denial of Service Vulnerability
- Dnsmasq Remote Denial of Service Vulnerability
- CiscoKits CCNA TFTP Server 'Write' Command Denial Of Service Vulnerability
- Adobe Flash Player/Air Multiple DoS Vulnerabilities - Aug09 (Linux)