17 matches found
EUVD-2023-26455
Malicious code in bioql PyPI...
EUVD-2022-48034
Malicious code in bioql PyPI...
CVE-2022-45115
A buffer overflow vulnerability exists in the Attribute Arena functionality of Ichitaro 2022 1.0.1.57600. A specially crafted document can lead to memory corruption. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2023-22660
A heap-based buffer overflow vulnerability exists in the way Ichitaro version 2022 1.0.1.57600 processes certain LayoutBox stream record types. A specially crafted document can cause a buffer overflow, leading to memory corruption, which can result in arbitrary code execution.To trigger this...
CVE-2023-22291
An invalid free vulnerability exists in the Frame stream parser functionality of Ichitaro 2022 1.0.1.57600. A specially crafted document can lead to an attempt to free a stack pointer, which causes memory corruption. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2022-45115
A buffer overflow vulnerability exists in the Attribute Arena functionality of Ichitaro 2022 1.0.1.57600. A specially crafted document can lead to memory corruption. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2022-45115
A buffer overflow vulnerability exists in the Attribute Arena functionality of Ichitaro 2022 1.0.1.57600. A specially crafted document can lead to memory corruption. An attacker can provide a malicious file to trigger this vulnerability...
Null pointer dereference
An invalid free vulnerability exists in the Frame stream parser functionality of Ichitaro 2022 1.0.1.57600. A specially crafted document can lead to an attempt to free a stack pointer, which causes memory corruption. An attacker can provide a malicious file to trigger this vulnerability...
Buffer overflow
A buffer overflow vulnerability exists in the Attribute Arena functionality of Ichitaro 2022 1.0.1.57600. A specially crafted document can lead to memory corruption. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2022-45115
A buffer overflow vulnerability exists in the Attribute Arena functionality of Ichitaro 2022 1.0.1.57600. A specially crafted document can lead to memory corruption. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2022-45115
CVE-2022-45115 concerns a buffer overflow in Ichitaro 2022 (version 1.0.1.57600) within the Attribute Arena processing of the file’s SummaryInformation stream. Cisco Talos documents a heap-based overflow caused by computing the arena size from two header fields of the 0x40 JSRV_SummaryInformation...
CVE-2022-45115
A buffer overflow vulnerability exists in the Attribute Arena functionality of Ichitaro 2022 1.0.1.57600. A specially crafted document can lead to memory corruption. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2023-22291
An invalid free vulnerability exists in the Frame stream parser functionality of Ichitaro 2022 1.0.1.57600. A specially crafted document can lead to an attempt to free a stack pointer, which causes memory corruption. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2023-22660
A heap-based buffer overflow vulnerability exists in the way Ichitaro version 2022 1.0.1.57600 processes certain LayoutBox stream record types. A specially crafted document can cause a buffer overflow, leading to memory corruption, which can result in arbitrary code execution.To trigger this...
CVE-2023-22291
An invalid free vulnerability exists in the Frame stream parser functionality of Ichitaro 2022 1.0.1.57600. A specially crafted document can lead to an attempt to free a stack pointer, which causes memory corruption. An attacker can provide a malicious file to trigger this vulnerability...
PT-2023-18402 · Unknown · Ichitaro 2022
Name of the Vulnerable Software and Affected Versions: Ichitaro 2022 version 1.0.1.57600 Description: An invalid free vulnerability exists in the Frame stream parser functionality. A specially crafted document can lead to an attempt to free a stack pointer, which causes memory corruption. An...
Ichitaro 2022 安全漏洞
JustSystems Ichitaro is a Japanese word processing software from JustSystems. A security vulnerability exists in Ichitaro 2022 version 1.0.1.57600, which stems from an invalid release vulnerability that can be exploited by an attacker to cause memory corruption by releasing the stack pointer via...