VYPR
Unrated severityNVD Advisory· Published Dec 18, 2007· Updated Jun 16, 2026

CVE-2007-6436

CVE-2007-6436

Description

Stack-based buffer overflow in JSGCI.DLL in JustSystems Ichitaro 2005, 2006, and 2007 allows user-assisted remote attackers to execute arbitrary code via a crafted document, as actively exploited in December 2007 by the Tarodrop.F trojan. NOTE: some of these details are obtained from third party information.

Affected products

4
  • cpe:2.3:a:justsystem:ichitaro:2005:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:justsystem:ichitaro:2005:*:*:*:*:*:*:*
    • cpe:2.3:a:justsystem:ichitaro:2006:*:*:*:*:*:*:*
    • cpe:2.3:a:justsystem:ichitaro:2007:*:*:*:*:*:*:*
    • (no CPE)range: 2005, 2006, and 2007

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.