Vulnerability Description
Unspecified vulnerability in JustSystems Ichitaro 13, 2004 through 2008, Lite2, and Ichitaro viewer 5.1.5.0 and earlier allows remote attackers to execute arbitrary code via a crafted file, as exploited in the wild by Trojan.Tarodrop.H in March 2009.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ichitaro | Ichitaro | 13 |
| Ichitaro | Ichitaro Viewer | <= 5.1.5.0 |
References
- http://secunia.com/advisories/34405Vendor Advisory
- http://www.justsystems.com/jp/info/js09001.htmlPatchVendor Advisory
- http://www.securityfocus.com/bid/34138
- http://www.symantec.com/business/security_response/writeup.jsp?docid=2009-031608
- http://www.vupen.com/english/advisories/2009/0769Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/49280
- http://secunia.com/advisories/34405Vendor Advisory
- http://www.justsystems.com/jp/info/js09001.htmlPatchVendor Advisory
- http://www.securityfocus.com/bid/34138
- http://www.symantec.com/business/security_response/writeup.jsp?docid=2009-031608
- http://www.vupen.com/english/advisories/2009/0769Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/49280
FAQ
What is CVE-2009-1054?
CVE-2009-1054 is a vulnerability with a CVSS score of 9.3 (HIGH). Unspecified vulnerability in JustSystems Ichitaro 13, 2004 through 2008, Lite2, and Ichitaro viewer 5.1.5.0 and earlier allows remote attackers to execute arbitrary code via a crafted file, as exploit...
How severe is CVE-2009-1054?
CVE-2009-1054 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-1054?
Check the references section above for vendor advisories and patch information. Affected products include: Ichitaro Ichitaro, Ichitaro Ichitaro Viewer.