GCVE - cpe:2.3:a:justsystem:ichitaro:2007:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:justsystem:ichitaro:2007:*:*:*:*:*:*:*

part: a version: 2007 update: *

Vendor	Justsystem (`2d863bc5-0c2f-5039-bdfa-553dd509979e`)
Product	Ichitaro (`7935ac1e-8709-51aa-8f44-b5453f936433`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2008-0223`	vulnerable	2026-06-08 04:50:10.516321	Details available Buffer overflow in JustSystems JSFC.DLL, as used in multiple JustSystems products such as Ichitaro, allows remote attackers to execute arbitrary code via a crafted .JTD file. Published: 2008-01-10T23:00:00.000Z Updated: 2024-08-07T07:39:34.543Z Open on db.gcve.eu Reference links http://www.securitytracker.com/id?1019168 http://www.securityfocus.com/bid/27153 http://www.justsystems.com/jp/info/pd8001.html http://www.fourteenforty.jp/research/advisory.cgi?FFRRA-20080107 http://secunia.com/advisories/28275	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2007-6436`	vulnerable	2026-06-08 04:50:08.844848	Details available Stack-based buffer overflow in JSGCI.DLL in JustSystems Ichitaro 2005, 2006, and 2007 allows user-assisted remote attackers to execute arbitrary code via a crafted document, as actively exploited in December 2007 by the Tarodrop.F trojan. NOTE: some of these details are obtained from third party information. Published: 2007-12-18T20:00:00.000Z Updated: 2024-08-07T16:02:37.015Z Open on db.gcve.eu Reference links http://www.osvdb.org/39395 http://www.symantec.com/security_response/writeup.jsp?docid=2007-121308-3953-99 https://exchange.xforce.ibmcloud.com/vulnerabilities/39025 http://www.vupen.com/english/advisories/2007/4213 http://secunia.com/advisories/27992	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2007-4246`	vulnerable	2026-06-08 04:49:55.976816	Details available Unspecified vulnerability, possibly a buffer overflow, in Justsystem Ichitaro 2007 and earlier allows remote attackers to execute arbitrary code via a modified document, as actively exploited in August 2007 by malware such as Tarodrop.D (Tarodrop.Q), a different vulnerability than CVE-2006-4326, CVE-2006-5424, CVE-2006-6400, and CVE-2007-1938. Published: 2007-08-08T23:00:00.000Z Updated: 2024-08-07T14:46:39.415Z Open on db.gcve.eu Reference links http://www.symantec.com/enterprise/security_response/weblog/2007/08/unknown_exploit_compromises_ic.html https://exchange.xforce.ibmcloud.com/vulnerabilities/35822 http://www.vupen.com/english/advisories/2007/2780 http://www.securityfocus.com/bid/25187 http://www.symantec.com/security_response/writeup.jsp?docid=2007-080210-4815-99	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.