6.8
CVE-2006-6400
- EPSS 5.9%
- Veröffentlicht 10.12.2006 02:28:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginBuffer overflow in JustSystems Hanako 2004 through 2006, Hanako viewer 1.x, Ichitaro 2004, Ichitaro 2005, Ichitaro Lite2, Ichitaro viewer 4.x, and Sanshiro 2005 allows remote attackers to execute arbitrary code via the (1) Keyword and (2) Title fields, related to string length fields.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Justsystem ≫ Hanako Version2004
Justsystem ≫ Hanako Version2005
Justsystem ≫ Hanako Version2006
Justsystem ≫ Hanako Viewer Version1.0
Justsystem ≫ Ichitaro Version2005
Justsystem ≫ Ichitaro Version2006
Justsystem ≫ Ichitaro Lite2 Versionr2
Justsystem ≫ Ichitaro Viewer Version4.0
Justsystem ≫ Sanshiro Version2005
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 5.9% | 0.902 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.8 | 8.6 | 6.4 |
AV:N/AC:M/Au:N/C:P/I:P/A:P
|
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.