17 matches found
EUVD-2023-41954
Malicious code in bioql PyPI...
EUVD-2023-41953
Malicious code in bioql PyPI...
CVE-2023-38127
An integer overflow exists in the "HyperLinkFrame" stream parser of Ichitaro 2023 1.0.1.59372. A specially crafted document can cause the parser to make an under-sized allocation, which can later allow for memory corruption, potentially resulting in arbitrary code execution. An attacker can provi...
CVE-2023-38128
An out-of-bounds write vulnerability exists in the "HyperLinkFrame" stream parser of Ichitaro 2023 1.0.1.59372. A specially crafted document can cause a type confusion, which can lead to memory corruption and eventually arbitrary code execution. An attacker can provide a malicious file to trigger...
CVE-2023-38127
An integer overflow exists in the "HyperLinkFrame" stream parser of Ichitaro 2023 1.0.1.59372. A specially crafted document can cause the parser to make an under-sized allocation, which can later allow for memory corruption, potentially resulting in arbitrary code execution. An attacker can provi...
CVE-2023-38128
An out-of-bounds write vulnerability exists in the "HyperLinkFrame" stream parser of Ichitaro 2023 1.0.1.59372. A specially crafted document can cause a type confusion, which can lead to memory corruption and eventually arbitrary code execution. An attacker can provide a malicious file to trigger...
Type confusion
An out-of-bounds write vulnerability exists in the "HyperLinkFrame" stream parser of Ichitaro 2023 1.0.1.59372. A specially crafted document can cause a type confusion, which can lead to memory corruption and eventually arbitrary code execution. An attacker can provide a malicious file to trigger...
Integer overflow
An integer overflow exists in the "HyperLinkFrame" stream parser of Ichitaro 2023 1.0.1.59372. A specially crafted document can cause the parser to make an under-sized allocation, which can later allow for memory corruption, potentially resulting in arbitrary code execution. An attacker can provi...
CVE-2023-38127
An integer overflow exists in the "HyperLinkFrame" stream parser of Ichitaro 2023 1.0.1.59372. A specially crafted document can cause the parser to make an under-sized allocation, which can later allow for memory corruption, potentially resulting in arbitrary code execution. An attacker can provi...
CVE-2023-38127
An integer overflow exists in the "HyperLinkFrame" stream parser of Ichitaro 2023 1.0.1.59372. A specially crafted document can cause the parser to make an under-sized allocation, which can later allow for memory corruption, potentially resulting in arbitrary code execution. An attacker can provi...
CVE-2023-38128
An out-of-bounds write vulnerability exists in the "HyperLinkFrame" stream parser of Ichitaro 2023 1.0.1.59372. A specially crafted document can cause a type confusion, which can lead to memory corruption and eventually arbitrary code execution. An attacker can provide a malicious file to trigger...
CVE-2023-38128
An out-of-bounds write vulnerability exists in the "HyperLinkFrame" stream parser of Ichitaro 2023 1.0.1.59372. A specially crafted document can cause a type confusion, which can lead to memory corruption and eventually arbitrary code execution. An attacker can provide a malicious file to trigger...
CVE-2023-38128
CVE-2023-38128 : In Ichitaro 2023 (version 1.0.1.59372), a vulnerability exists in the HyperLinkFrame stream parser that allows an out-of-bounds write, causing a type confusion, memory corruption, and potential arbitrary code execution. Cisco Talos details a chain where an input document’s 0x2008...
JustSystems Corporation Ichitaro 2023 HyperLinkFrame parser out-of-bounds write vulnerability
Talos Vulnerability Report TALOS-2023-1809 JustSystems Corporation Ichitaro 2023 HyperLinkFrame parser out-of-bounds write vulnerability October 19, 2023 CVE Number CVE-2023-38128 SUMMARY An out-of-bounds write vulnerability exists in the “HyperLinkFrame” stream parser of Ichitaro 2023 1.0.1.5937...
JustSystems Ichitaro Input Validation Error Vulnerability
JustSystems Ichitaro is a Japanese word processing software from JustSystems. An input validation error vulnerability exists in JustSystems Ichitaro 2023 version 1.0.1.59372, which is caused by an integer overflow in the HyperLinkFrame stream parser, where a specially crafted document may cause t...
PT-2023-26312 · Unknown · Ichitaro 2023
Name of the Vulnerable Software and Affected Versions: Ichitaro 2023 version 1.0.1.59372 Description: An integer overflow exists in the HyperLinkFrame stream parser. A specially crafted document can cause the parser to make an under-sized allocation, which can later allow for memory corruption,...
JustSystems Ichitaro Buffer Error Vulnerability
JustSystems Ichitaro is a Japanese word processing software from JustSystems. A buffer error vulnerability exists in JustSystems Ichitaro 2023 version 1.0.1.59372, which stems from an out-of-bounds write in the HyperLinkFrame stream parser, where a specially crafted document could lead to type...