CVE-2009-4737
Last modified
CVE-2009-4737 is a vulnerability of currently unknown severity. Stack-based buffer overflow in JustSystems Corporation Ichitaro 13, 2004 through 2009, Viewer 2009 19.0.1.0 and earlier, and other versions allows context-dependent attackers to execute arbitrary code via a crafted Rich Text File (RTF), related to "pvpara ffooter.". EPSS estimates a 3.48% chance of exploitation in the next 30 days.
Description
Stack-based buffer overflow in JustSystems Corporation Ichitaro 13, 2004 through 2009, Viewer 2009 19.0.1.0 and earlier, and other versions allows context-dependent attackers to execute arbitrary code via a crafted Rich Text File (RTF), related to "pvpara ffooter."
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Justsystems | Ichitaro | 13 |
| Justsystems | Ichitaro | 2004 |
| Justsystems | Ichitaro | 2005 |
| Justsystems | Ichitaro | 2006 |
| Justsystems | Ichitaro | 2007 |
| Justsystems | Ichitaro | 2008 |
| Justsystems | Ichitaro | 2009 |
| Justsystems | Ichitaro | bungei |
| Justsystems | Ichitaro Viewer | 19.0.1.0 |
| Justsystems | Ichitaro Viewer | 20.0.2.0 |
References
- http://secunia.com/advisories/34611Vendor Advisory
- http://www.justsystems.com/jp/info/js09002.htmlPatch, Vendor Advisory
- http://www.vupen.com/english/advisories/2009/0957Patch, Vendor Advisory
- http://secunia.com/advisories/34611Vendor Advisory
- http://www.justsystems.com/jp/info/js09002.htmlPatch, Vendor Advisory
- http://www.vupen.com/english/advisories/2009/0957Patch, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2009-4737?
How severe is CVE-2009-4737?
How do I fix CVE-2009-4737?
Are you affected by CVE-2009-4737?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST