Vulnerability Description
Stack-based buffer overflow in JustSystems Corporation Ichitaro 13, 2004 through 2009, Viewer 2009 19.0.1.0 and earlier, and other versions allows context-dependent attackers to execute arbitrary code via a crafted Rich Text File (RTF), related to "pvpara ffooter."
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Justsystems | Ichitaro | 13 |
| Justsystems | Ichitaro Viewer | 19.0.1.0 |
Related Weaknesses (CWE)
References
- http://jvn.jp/en/jp/JVN33846134/index.html
- http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-000018.html
- http://secunia.com/advisories/34611Vendor Advisory
- http://www.fourteenforty.jp/research/advisory.cgi?FFRRA-20090407
- http://www.ipa.go.jp/security/vuln/documents/2009/200904_ichitaro.html
- http://www.justsystems.com/jp/info/js09002.htmlPatchVendor Advisory
- http://www.osvdb.org/53349
- http://www.securityfocus.com/bid/34403
- http://www.vupen.com/english/advisories/2009/0957PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/49739
- http://jvn.jp/en/jp/JVN33846134/index.html
- http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-000018.html
- http://secunia.com/advisories/34611Vendor Advisory
- http://www.fourteenforty.jp/research/advisory.cgi?FFRRA-20090407
- http://www.ipa.go.jp/security/vuln/documents/2009/200904_ichitaro.html
FAQ
What is CVE-2009-4737?
CVE-2009-4737 is a vulnerability with a CVSS score of 9.3 (HIGH). Stack-based buffer overflow in JustSystems Corporation Ichitaro 13, 2004 through 2009, Viewer 2009 19.0.1.0 and earlier, and other versions allows context-dependent attackers to execute arbitrary code...
How severe is CVE-2009-4737?
CVE-2009-4737 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-4737?
Check the references section above for vendor advisories and patch information. Affected products include: Justsystems Ichitaro, Justsystems Ichitaro Viewer.