Lucene search

[email protected]CVE-2014-0810

HistoryJan 29, 2014 - 5:37 a.m.

CVE-2014-0810

2014-01-2905:37:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2014-0810

justsystems sanshiro

remote code execution

vulnerability

sanshiro viewer

nvd

7.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.07 Low

EPSS

Percentile

93.9%

JSON

Unspecified vulnerability in JustSystems Sanshiro 2007 before update 3, 2008 before update 5, 2009 before update 6, and 2010 before update 6, and Sanshiro Viewer before 2.0.2.0, allows remote attackers to execute arbitrary code via a crafted document.

CPENameOperatorVersion
justsystems:sanshirojustsystems sanshiroeq2010
justsystems:sanshirojustsystems sanshiroeq2008
justsystems:sanshirojustsystems sanshiroeqviewer
justsystems:sanshirojustsystems sanshiroeq2009
justsystems:sanshirojustsystems sanshiroeq2007

CPE	Name	Operator	Version
justsystems:sanshiro	justsystems sanshiro	eq	2010
justsystems:sanshiro	justsystems sanshiro	eq	2008
justsystems:sanshiro	justsystems sanshiro	eq	viewer
justsystems:sanshiro	justsystems sanshiro	eq	2009
justsystems:sanshiro	justsystems sanshiro	eq	2007

References

jvn.jp/en/jp/JVN28011378/index.html

jvndb.jvn.jp/jvndb/JVNDB-2014-000011

www.justsystems.com/jp/info/js14001.html

7.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.07 Low

EPSS

Percentile

93.9%

JSON

Related for CVE-2014-0810

jvn1 prion1 threatpost1