Lucene search

[email protected]CVE-2012-1242

HistoryApr 27, 2012 - 6:55 p.m.

CVE-2012-1242

2012-04-2718:55:00

[email protected]

web.nvd.nist.gov

cve-2012-1242

untrusted search path

justsystems

ichitaro

local privilege escalation

vulnerability

6.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Untrusted search path vulnerability in JustSystems Ichitaro 2011 Sou, Ichitaro 2006 through 2011, Ichitaro Government 2006 through 2010, Ichitaro Portable with oreplug, Ichitaro Viewer, JUST School, JUST School 2009 and 2010, JUST Jump 4, JUST Frontier, and oreplug allows local users to gain privileges via a Trojan horse DLL in the current working directory.

Affected configurations

NVD

Node

justsystemsichitaroMatch2006

justsystemsichitaroMatch2006-government

justsystemsichitaroMatch2007

justsystemsichitaroMatch2007-government

justsystemsichitaroMatch2008

justsystemsichitaroMatch2008-government

justsystemsichitaroMatch2009

justsystemsichitaroMatch2009-government

justsystemsichitaroMatch2010

justsystemsichitaroMatch2010-government

justsystemsichitaroMatch2011

justsystemsichitaroMatch2011-sou

justsystemsichitaro_portable_with_oreplugMatch-

justsystemsichitaro_viewerMatch-

justsystemsjust_frontierMatch-

justsystemsjust_jumpMatch4

justsystemsjust_schoolMatch-

justsystemsjust_schoolMatch2009

justsystemsjust_schoolMatch2010

justsystemsoreplugMatch-

CPENameOperatorVersion
justsystems:ichitarojustsystems ichitaroeq2006
justsystems:ichitarojustsystems ichitaroeq2007
justsystems:ichitarojustsystems ichitaroeq2008
justsystems:ichitarojustsystems ichitaroeq2009
justsystems:ichitarojustsystems ichitaroeq2010
justsystems:ichitarojustsystems ichitaroeq2011
justsystems:ichitaro_portable_with_oreplugjustsystems ichitaro portable with oreplugeq-
justsystems:ichitaro_viewerjustsystems ichitaro viewereq-
justsystems:just_frontierjustsystems just frontiereq-
justsystems:just_jumpjustsystems just jumpeq4

CPE	Name	Operator	Version
justsystems:ichitaro	justsystems ichitaro	eq	2006
justsystems:ichitaro	justsystems ichitaro	eq	2007
justsystems:ichitaro	justsystems ichitaro	eq	2008
justsystems:ichitaro	justsystems ichitaro	eq	2009
justsystems:ichitaro	justsystems ichitaro	eq	2010
justsystems:ichitaro	justsystems ichitaro	eq	2011
justsystems:ichitaro_portable_with_oreplug	justsystems ichitaro portable with oreplug	eq	-
justsystems:ichitaro_viewer	justsystems ichitaro viewer	eq	-
justsystems:just_frontier	justsystems just frontier	eq	-
justsystems:just_jump	justsystems just jump	eq	4

Rows per page:

1-10 of 141

References

jvn.jp/en/jp/JVN95378720/index.html

jvndb.jvn.jp/jvndb/JVNDB-2012-000034

osvdb.org/81472

www.justsystems.com/jp/info/js12001.html

6.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2012-1242

nvd1 jvn1 cvelist1 prion1