GCVE - cpe:2.3:a:justsystems:ichitaro:2005:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:justsystems:ichitaro:2005:*:*:*:*:*:*:*

part: a version: 2005 update: *

Vendor	Justsystems (`1b413bc6-6844-5405-901d-fb3124cbfe42`)
Product	Ichitaro (`64c6f958-a060-5275-8272-54f57ea4b5b6`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2014-2003`	vulnerable	2026-06-03 14:33:49.284334	Details available JustSystems JUST Online Update, as used in Ichitaro through 2014 and other products, does not properly validate signatures of update modules, which allows remote attackers to spoof modules and execute arbitrary code via a crafted signature. Published: 2014-06-16T14:00:00.000Z Updated: 2024-08-06T09:58:16.292Z Open on db.gcve.eu Reference links http://www.justsystems.com/jp/info/js14002.html http://jvndb.jvn.jp/jvndb/JVNDB-2014-000053 http://jvn.jp/en/jp/JVN50129191/index.html http://www.ipa.go.jp/security/ciadr/vul/20140611-jvn.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-1331`	vulnerable	2026-06-03 14:31:00.662899	Details available JustSystems Ichitaro 2005 through 2011, Ichitaro Government 6, Ichitaro Government 2006 through 2010, Ichitaro Portable, Ichitaro Pro, and Ichitaro Viewer allow remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a crafted document, as exploited in the wild in early 2011. Published: 2011-07-18T22:00:00.000Z Updated: 2024-08-06T22:21:34.200Z Open on db.gcve.eu Reference links http://secunia.com/advisories/44956 http://www.securityfocus.com/bid/48283 http://jvndb.jvn.jp/jvndb/JVNDB-2011-000043 https://exchange.xforce.ibmcloud.com/vulnerabilities/68072 http://www.justsystems.com/jp/info/js11001.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2010-2152`	vulnerable	2026-06-03 14:30:18.181712	Details available Unspecified vulnerability in JustSystems Ichitaro 2004 through 2009, Ichitaro Government 2006 through 2009, and Just School 2008 and 2009 allows remote attackers to execute arbitrary code via unknown vectors related to "product character attribute processing" for a document. Published: 2010-06-03T16:00:00.000Z Updated: 2024-08-07T02:25:07.018Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/59037 http://www.securityfocus.com/bid/40472 http://jvn.jp/en/jp/JVN17293765/index.html http://www.vupen.com/english/advisories/2010/1283 http://secunia.com/advisories/40008	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-4737`	vulnerable	2026-06-03 14:29:58.633457	Details available Stack-based buffer overflow in JustSystems Corporation Ichitaro 13, 2004 through 2009, Viewer 2009 19.0.1.0 and earlier, and other versions allows context-dependent attackers to execute arbitrary code via a crafted Rich Text File (RTF), related to "pvpara ffooter." Published: 2010-04-06T22:00:00.000Z Updated: 2024-08-07T07:17:25.178Z Open on db.gcve.eu Reference links http://secunia.com/advisories/34611 http://www.osvdb.org/53349 http://www.vupen.com/english/advisories/2009/0957 http://www.justsystems.com/jp/info/js09002.html http://www.securityfocus.com/bid/34403	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.