CVE-2017-10870
Summary
| CVE | CVE-2017-10870 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2017-11-02 15:29:00 UTC |
| Updated | 2017-11-22 14:52:00 UTC |
| Description | Memory corruption vulnerability in Rakuraku Hagaki (Rakuraku Hagaki 2018, Rakuraku Hagaki 2017, Rakuraku Hagaki 2016) and Rakuraku Hagaki Select for Ichitaro (Ichitaro 2017, Ichitaro 2016, Ichitaro 2015, Ichitaro Pro3, Ichitaro Pro2, Ichitaro Pro, Ichitaro 2011, Ichitaro Government 8, Ichitaro Government 7, Ichitaro Government 6 and Ichitaro 2017 Trial version) allows attackers to execute arbitrary code with privileges of the application via specially crafted file. |
Risk And Classification
Problem Types: CWE-119
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Justsystems | Easy Postcard 2016 | - | All | All | All |
| Application | Justsystems | Easy Postcard 2016 | - | All | All | All |
| Application | Justsystems | Easy Postcard 2017 | - | All | All | All |
| Application | Justsystems | Easy Postcard 2017 | - | All | All | All |
| Application | Justsystems | Easy Postcard 2018 | - | All | All | All |
| Application | Justsystems | Easy Postcard 2018 | - | All | All | All |
| Application | Justsystems | Ichitaro 2016 | - | All | All | All |
| Application | Justsystems | Ichitaro 2016 | - | All | All | All |
| Application | Justsystems | Ichitaro 2017 | - | All | All | All |
| Application | Justsystems | Ichitaro 2017 | - | All | All | All |
| Application | Justsystems | Ichitaro 2017 Trial Version | - | All | All | All |
| Application | Justsystems | Ichitaro 2017 Trial Version | - | All | All | All |
| Application | Justsystems | Ichitaro 2018 | - | All | All | All |
| Application | Justsystems | Ichitaro 2018 | - | All | All | All |
| Application | Justsystems | Ichitaro Government 6 | - | All | All | All |
| Application | Justsystems | Ichitaro Government 6 | - | All | All | All |
| Application | Justsystems | Ichitaro Government 7 | - | All | All | All |
| Application | Justsystems | Ichitaro Government 7 | - | All | All | All |
| Application | Justsystems | Ichitaro Government 8 | - | All | All | All |
| Application | Justsystems | Ichitaro Government 8 | - | All | All | All |
| Application | Justsystems | Ichitaro Pro | - | All | All | All |
| Application | Justsystems | Ichitaro Pro | - | All | All | All |
| Application | Justsystems | Ichitaro Pro 2 | - | All | All | All |
| Application | Justsystems | Ichitaro Pro 2 | - | All | All | All |
| Application | Justsystems | Ichitaro Pro 2011 | - | All | All | All |
| Application | Justsystems | Ichitaro Pro 2011 | - | All | All | All |
| Application | Justsystems | Ichitaro Pro 3 | - | All | All | All |
| Application | Justsystems | Ichitaro Pro 3 | - | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| [JS17003]楽々はがき および 楽々はがきセレクト for 一太郎の脆弱性を悪用した不正なプログラムの実行危険性について | お知らせ | ジャストシステム | MISC | www.justsystems.com | Patch, Vendor Advisory |
| JVNVU#93703434: Memory corruption vulnerability in Rakuraku Hagaki and Rakuraku Hagaki Select for Ichitaro | MISC | jvn.jp | Third Party Advisory, VDB Entry |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.