Lucene search

[email protected]CVE-2006-0807

HistoryFeb 21, 2006 - 2:02 a.m.

CVE-2006-0807

2006-02-2102:02:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2006-0807

njstar

chinese

japanese

word processor

buffer overflow

arbitrary code

font names

security vulnerability

5.1 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

7.9 High

AI Score

Confidence

High

0.021 Low

EPSS

Percentile

89.2%

JSON

Stack-based buffer overflow in NJStar Chinese and Japanese Word Processor 4.x and 5.x before 5.10 allows user-assisted attackers to execute arbitrary code via font names in NJStar (.njx) documents.

Affected configurations

NVD

Node

njstarchinese_word_processorRange≤5.01.41108

njstarjapanese_word_processorRange≤5.01.41108

CPENameOperatorVersion
njstar:chinese_word_processornjstar chinese word processorle5.01.41108
njstar:japanese_word_processornjstar japanese word processorle5.01.41108

CPE	Name	Operator	Version
njstar:chinese_word_processor	njstar chinese word processor	le	5.01.41108
njstar:japanese_word_processor	njstar japanese word processor	le	5.01.41108

References

secunia.com/advisories/18702

secunia.com/secunia_research/2006-5/advisory/

securityreason.com/securityalert/461

securitytracker.com/id?1015649

www.njstar.com/njstar/chinese/

www.njstar.com/njstar/japanese/

www.osvdb.org/23354

www.securityfocus.com/archive/1/425498/100/0/threaded

www.securityfocus.com/bid/16737

www.vupen.com/english/advisories/2006/0670

exchange.xforce.ibmcloud.com/vulnerabilities/24773

5.1 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

7.9 High

AI Score

Confidence

High

0.021 Low

EPSS

Percentile

89.2%

JSON

Related for CVE-2006-0807

cvelist1 nvd1 kaspersky1 prion1