CVE-2007-6436

Stack-based buffer overflow in JSGCI.DLL in JustSystems Ichitaro 2005, 2006, and 2007 allows user-assisted remote attackers to execute arbitrary code via a crafted document, as actively exploited in December 2007 by the Tarodrop.F trojan. NOTE: some of these details are obtained from third party information.

🔗 References (10)

• cve@mitrehttp://secunia.com/advisories/27992
• cve@mitrehttp://www.osvdb.org/39395
• cve@mitrehttp://www.symantec.com/security_response/writeup.jsp?docid=2007-121308-3953-99
• cve@mitrehttp://www.vupen.com/english/advisories/2007/4213
• cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/39025
• af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/27992
• af854a3a-2127-422b-91ae-364da2661108http://www.osvdb.org/39395
• af854a3a-2127-422b-91ae-364da2661108http://www.symantec.com/security_response/writeup.jsp?docid=2007-121308-3953-99
• af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2007/4213
• af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/39025