Kaspersky LabKLA10326KLA10326 ACE vulnerability in JustSystems products
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
8.1 High
AI Score
Confidence
Low
0.009 Low
EPSS
Percentile
82.8%
A buffer overflow was found in JustSystems products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed image.
Original advisories
Related products
CVE list
CVE-2012-0269 critical
Solution
Update to latest version
Impacts
- ACE
Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.
Affected Products
- JustSystems Ichitaro version 2011 SouJustSystems Ichitaro versions from 2006 to 2011JustSystems Ichitaro Government from 2006 to 2010JustSystems Ichitaro Portable with oreplugJustSystems Ichitaro ViewerJustSystems JUST School 2009 and 2010JustSystems JUST Jump 4 JustSystemsJUST Frontier JustSystems Shuriken Pro4, Pro4 Corporate EditionJustSystems Shuriken versions from 2007 to 2010JustSystems Shuriken CE versions from 2007 to 2010
Related
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
8.1 High
AI Score
Confidence
Low
0.009 Low
EPSS
Percentile
82.8%