GCVE - cpe:2.3:a:justsystem:ichitaro:11.0:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:justsystem:ichitaro:11.0:*:*:*:*:*:*:*

part: a version: 11.0 update: *

Vendor	Justsystem (`2d863bc5-0c2f-5039-bdfa-553dd509979e`)
Product	Ichitaro (`7935ac1e-8709-51aa-8f44-b5453f936433`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2008-0223`	vulnerable	2026-06-08 04:50:10.516195	Details available Buffer overflow in JustSystems JSFC.DLL, as used in multiple JustSystems products such as Ichitaro, allows remote attackers to execute arbitrary code via a crafted .JTD file. Published: 2008-01-10T23:00:00.000Z Updated: 2024-08-07T07:39:34.543Z Open on db.gcve.eu Reference links http://www.securitytracker.com/id?1019168 http://www.securityfocus.com/bid/27153 http://www.justsystems.com/jp/info/pd8001.html http://www.fourteenforty.jp/research/advisory.cgi?FFRRA-20080107 http://secunia.com/advisories/28275	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2007-5687`	vulnerable	2026-06-08 04:50:06.722420	Details available Multiple buffer overflows in the rich text processing functionality in JustSystems Ichitaro 2004 through 2007, 11 through 13, and other versions allow remote attackers to execute arbitrary code via a long (1) pard field or (2) font name in the fcharset0 field, which is not properly handled in (a) JSTARO4.OCX; or (3) a long title, which is not properly handled by (b) TJSVDA.DLL. Published: 2007-10-28T16:00:00.000Z Updated: 2024-08-07T15:39:13.612Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/38130 http://www.securityfocus.com/bid/26206 http://secunia.com/advisories/27393 http://www.fourteenforty.jp/research/advisory.cgi?FFRRA-20071025-2 http://jvn.jp/jp/JVN%2350495547/index.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-4326`	vulnerable	2026-06-08 04:49:17.592329	Details available Stack-based buffer overflow in Justsystem Ichitaro 9.x through 13.x, Ichitaro 2004, 2005, 2006, and Government 2006; Ichitaro for Linux; and FormLiner before 20060818 allows remote attackers to execute arbitrary code via long Unicode strings in a crafted document, as being actively exploited by malware such as Trojan.Tarodrop. NOTE: some details are obtained from third party information. Published: 2006-08-24T01:00:00.000Z Updated: 2024-08-07T19:06:07.633Z Open on db.gcve.eu Reference links http://secunia.com/advisories/21552 http://www.vupen.com/english/advisories/2006/3332 https://exchange.xforce.ibmcloud.com/vulnerabilities/28484 http://www.symantec.com/enterprise/security_response/weblog/2006/08/justsystems_ichitaro_0day_used.html http://www.symantec.com/enterprise/security_response/writeup.jsp?docid=2006-081615-5201-99	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.