CVE-2012-0269

Summary

CVE	CVE-2012-0269
State	PUBLISHED
Assigner	flexera
Source Priority	CVE Program / NVD first with legacy fallback
Published	2012-04-27 18:55:00 UTC
Updated	2026-04-29 01:13:23 UTC
Description	Buffer overflow in JustSystems Ichitaro 2011 Sou, Ichitaro 2006 through 2011, Ichitaro Government 2006 through 2010, Ichitaro Portable with oreplug, Ichitaro Viewer, JUST School, JUST School 2009 and 2010, JUST Jump 4, JUST Frontier, oreplug, Shuriken Pro4, Shuriken 2007 through 2010, Shuriken Pro4 Corporate Edition, Shuriken CE/2007 through CE/2009 Corporate Edition, Shuriken 2010 Corporate Edition, Rekishimail Sengokubusho no missho, and Bakumatsushishi no missho allows remote attackers to execute arbitrary code via a crafted image file.

Risk And Classification

Primary CVSS: v2.0 9.3 from [email protected]

AV:N/AC:M/Au:N/C:C/I:C/A:C

Problem Types: CWE-119 | n/a

CVSS v2.0 Breakdown

Access Vector

Network

Access Complexity

Medium

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

AV:N/AC:M/Au:N/C:C/I:C/A:C

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Justsystems	Ichitaro	2006	All	All	All
Application	Justsystems	Ichitaro	2006	-	government	All
Application	Justsystems	Ichitaro	2007	All	All	All
Application	Justsystems	Ichitaro	2007	-	government	All
Application	Justsystems	Ichitaro	2008	All	All	All
Application	Justsystems	Ichitaro	2008	-	government	All
Application	Justsystems	Ichitaro	2009	All	All	All
Application	Justsystems	Ichitaro	2009	-	government	All
Application	Justsystems	Ichitaro	2010	All	All	All
Application	Justsystems	Ichitaro	2010	-	government	All
Application	Justsystems	Ichitaro	2011	All	All	All
Application	Justsystems	Ichitaro	2011	-	sou	All
Application	Justsystems	Ichitaro Portable With Oreplug	-	All	All	All
Application	Justsystems	Ichitaro Viewer	-	All	All	All
Application	Justsystems	Just Frontier	-	All	All	All
Application	Justsystems	Just Jump	4	All	All	All
Application	Justsystems	Just School	-	All	All	All
Application	Justsystems	Just School	2009	All	All	All
Application	Justsystems	Just School	2010	All	All	All
Application	Justsystems	Oreplug	-	All	All	All
Application	Justsystems	Rekishimail Bakumatsushishi No Missho	-	All	All	All
Application	Justsystems	Rekishimail Sengokubusho No Missho	-	All	All	All
Application	Justsystems	Shuriken	2007	All	All	All
Application	Justsystems	Shuriken	2007	-	corporate	All
Application	Justsystems	Shuriken	2008	All	All	All
Application	Justsystems	Shuriken	2008	-	corporate	All
Application	Justsystems	Shuriken	2009	All	All	All
Application	Justsystems	Shuriken	2009	-	corporate	All
Application	Justsystems	Shuriken	2010	All	All	All
Application	Justsystems	Shuriken	2010	-	corporate	All
Application	Justsystems	Shuriken Pro	4	All	All	All
Application	Justsystems	Shuriken Pro	4	-	corporate	All

Vendor Declared Affected Products

Source	Vendor	Product	Version	Platforms
CNA	Na	N/a	affected n/a	Not specified

References

Reference	Source	Link	Tags
JVN#09619876: Multiple JustSystems products vulnerable to buffer overflow	af854a3a-2127-422b-91ae-364da2661108	jvn.jp
jvndb.jvn.jp/jvndb/JVNDB-2012-000035	af854a3a-2127-422b-91ae-364da2661108	jvndb.jvn.jp
[JS12001]一太郎・Shurikenの脆弱性を悪用した不正なプログラムの実行危険性について (update: 2012.4.26) \| お知らせ \| ジャストシステム	af854a3a-2127-422b-91ae-364da2661108	www.justsystems.com	Vendor Advisory
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.