1. Home
  2. CVE Database
  3. CVE-2006-6400
MEDIUM · 6.8

CVE-2006-6400

Buffer overflow in JustSystems Hanako 2004 through 2006, Hanako viewer 1.x, Ichitaro 2004, Ichitaro 2005, Ichitaro Lite2, Ichitaro viewer 4.x, and Sanshiro 2005 allows remote attackers to execute arbi...

Vulnerability Description

Buffer overflow in JustSystems Hanako 2004 through 2006, Hanako viewer 1.x, Ichitaro 2004, Ichitaro 2005, Ichitaro Lite2, Ichitaro viewer 4.x, and Sanshiro 2005 allows remote attackers to execute arbitrary code via the (1) Keyword and (2) Title fields, related to string length fields.

CVSS Score

6.8

MEDIUM

AV:N/AC:M/Au:N/C:P/I:P/A:P
Confidentiality
PARTIAL
Integrity
PARTIAL
Availability
PARTIAL

Affected Products

VendorProductVersions
JustsystemHanako2004
JustsystemHanako Viewer1.0
JustsystemIchitaroAll versions
JustsystemIchitaro Lite2All versions
JustsystemIchitaro Viewer4.0
JustsystemSanshiro2005

Related Weaknesses (CWE)

CWE-119

References

FAQ

What is CVE-2006-6400?

CVE-2006-6400 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Buffer overflow in JustSystems Hanako 2004 through 2006, Hanako viewer 1.x, Ichitaro 2004, Ichitaro 2005, Ichitaro Lite2, Ichitaro viewer 4.x, and Sanshiro 2005 allows remote attackers to execute arbi...

How severe is CVE-2006-6400?

CVE-2006-6400 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2006-6400?

Check the references section above for vendor advisories and patch information. Affected products include: Justsystem Hanako, Justsystem Hanako Viewer, Justsystem Ichitaro, Justsystem Ichitaro Lite2, Justsystem Ichitaro Viewer.