CVE-2011-1331

EXPLOITED IN THE WILD

JustSystems Ichitaro 2005-2011 - Remote Code Execution via Crafted Document

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2011-1331 has been observed exploited in the wild (reported by VulnCheck KEV, InTheWild.io).

Description

JustSystems Ichitaro 2005 through 2011, Ichitaro Government 6, Ichitaro Government 2006 through 2010, Ichitaro Portable, Ichitaro Pro, and Ichitaro Viewer allow remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a crafted document, as exploited in the wild in early 2011.

References (7)

Core 7
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/44956
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/48283
Third Party Advisory third-party-advisory x_refsource_jvndb
http://jvndb.jvn.jp/jvndb/JVNDB-2011-000043
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/68072
Patch, Vendor Advisory x_refsource_confirm
http://www.justsystems.com/jp/info/js11001.html
Third Party Advisory third-party-advisory x_refsource_jvn
http://jvn.jp/en/jp/JVN87239473/index.html

Scores

EPSS 0.0556
EPSS Percentile 91.9%

Details

VulnCheck KEV 2011-07-18
InTheWild.io 2017-08-17
CWE
CWE-119
Status published
Products (16)
justsystems/ichitaro 6
justsystems/ichitaro 2005
justsystems/ichitaro 2006 (2 CPE variants)
justsystems/ichitaro 2007 (2 CPE variants)
justsystems/ichitaro 2008 (2 CPE variants)
justsystems/ichitaro 2009 (2 CPE variants)
justsystems/ichitaro 2010 (2 CPE variants)
justsystems/ichitaro 2011
justsystems/ichitaro_portable
justsystems/ichitaro_pro
... and 6 more
Published Jul 18, 2011
Tracked Since Feb 18, 2026