An out-of-bounds write vulnerability exists within the parsers for both the "DocumentViewStyles" and "DocumentEditStyles" streams of Ichitaro 2023 1.0.1.59372 when processing types 0x0000-0x0009 of a style record with the type 0x2008. A specially crafted document can cause memory corruption, which can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
2023-10-19T17:15:10.000
2024-11-21T08:07:59.467
Modified
CVSSv3.1: 7.8 (HIGH)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | justsystems | easy_postcard_max | - | Yes |
| Application | justsystems | ichitaro_2021 | - | Yes |
| Application | justsystems | ichitaro_2022 | - | Yes |
| Application | justsystems | ichitaro_2023 | 1.0.1.59372 | Yes |
| Application | justsystems | ichitaro_government_10 | - | Yes |
| Application | justsystems | ichitaro_government_8 | - | Yes |
| Application | justsystems | ichitaro_government_9 | - | Yes |
| Application | justsystems | ichitaro_pro_3 | - | Yes |
| Application | justsystems | ichitaro_pro_4 | - | Yes |
| Application | justsystems | ichitaro_pro_5 | - | Yes |
| Application | justsystems | just_government_3 | - | Yes |
| Application | justsystems | just_government_4 | - | Yes |
| Application | justsystems | just_government_5 | - | Yes |
| Application | justsystems | just_office_3 | - | Yes |
| Application | justsystems | just_office_4 | - | Yes |
| Application | justsystems | just_office_5 | - | Yes |
| Application | justsystems | just_police_3 | - | Yes |
| Application | justsystems | just_police_4 | - | Yes |
| Application | justsystems | just_police_5 | - | Yes |