CVE-2011-1331
EXPLOITED IN THE WILDJustSystems Ichitaro 2005-2011 - Remote Code Execution via Crafted Document
Title source: llmExploitation Summary
CVE-2011-1331 has been observed exploited in the wild (reported by VulnCheck KEV, InTheWild.io).
Description
JustSystems Ichitaro 2005 through 2011, Ichitaro Government 6, Ichitaro Government 2006 through 2010, Ichitaro Portable, Ichitaro Pro, and Ichitaro Viewer allow remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a crafted document, as exploited in the wild in early 2011.
References (7)
Core 7
Core References
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/44956
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/48283
Third Party Advisory third-party-advisory
x_refsource_jvndb
http://jvndb.jvn.jp/jvndb/JVNDB-2011-000043
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/68072
Patch, Vendor Advisory x_refsource_confirm
http://www.justsystems.com/jp/info/js11001.html
Exploit x_refsource_misc
http://www.symantec.com/connect/blogs/targeted-attacks-2011-using-ichitaro-zero-day-vulnerability
Third Party Advisory third-party-advisory
x_refsource_jvn
http://jvn.jp/en/jp/JVN87239473/index.html
Scores
EPSS
0.0556
EPSS Percentile
91.9%
Details
VulnCheck KEV
2011-07-18
InTheWild.io
2017-08-17
CWE
CWE-119
Status
published
Products (16)
justsystems/ichitaro
6
justsystems/ichitaro
2005
justsystems/ichitaro
2006 (2 CPE variants)
justsystems/ichitaro
2007 (2 CPE variants)
justsystems/ichitaro
2008 (2 CPE variants)
justsystems/ichitaro
2009 (2 CPE variants)
justsystems/ichitaro
2010 (2 CPE variants)
justsystems/ichitaro
2011
justsystems/ichitaro_portable
justsystems/ichitaro_pro
... and 6 more
Published
Jul 18, 2011
Tracked Since
Feb 18, 2026