When processing a record type of 0x3c from a Workbook stream from an Excel file (.xls), JustSystems Ichitaro Office trusts that the size is greater than zero, subtracts one from the length, and uses this result as the size for a memcpy. This results in a heap-based buffer overflow and can lead to code execution under the context of the application.
oryginał ENCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HJustsystems Ichitaro
APPJustsystemswszystkie wersje
Powiązane podatności
When copying filedata into a buffer, JustSystems Ichitaro Office 2016 Trial will calculate two values to deter...
JustSystems Ichitaro 2016 Trial contains a vulnerability that exists when trying to open a specially crafted P...
Unspecified vulnerability in JustSystems Ichitaro 2008 through 2011; Ichitaro Government 6, 7, 2008, 2009, and...
JustSystems JUST Online Update, as used in Ichitaro through 2014 and other products, does not properly validat...
Unspecified vulnerability in JustSystems Ichitaro 2006 through 2011; Ichitaro Government 6, 7, and 2006 throug...