9.3

CVE-2009-1054

Unspecified vulnerability in JustSystems Ichitaro 13, 2004 through 2008, Lite2, and Ichitaro viewer 5.1.5.0 and earlier allows remote attackers to execute arbitrary code via a crafted file, as exploited in the wild by Trojan.Tarodrop.H in March 2009.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IchitaroIchitaro Version13
IchitaroIchitaro Version2004
IchitaroIchitaro Version2005
IchitaroIchitaro Version2006
IchitaroIchitaro Version2007
IchitaroIchitaro Version2008
IchitaroIchitaro Versionlite2
IchitaroIchitaro Viewer Version <= 5.1.5.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 3.91% 0.889
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/34405
Vendor Advisory
http://www.justsystems.com/jp/info/js09001.html
Patch
Vendor Advisory
http://www.securityfocus.com/bid/34138
http://www.symantec.com/business/security_response/writeup.jsp?docid=2009-031608-2424-99
http://www.vupen.com/english/advisories/2009/0769
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/49280