CVE-2006-4326 Information

Description

Stack-based buffer overflow in Justsystem Ichitaro 9.x through 13.x Ichitaro 2004 2005 2006 and Government 2006; Ichitaro for Linux; and FormLiner before 20060818 allows remote attackers to execute arbitrary code via long Unicode strings in a crafted document as being actively exploited by malware such as Trojan.Tarodrop. NOTE: some details are obtained from third party information.

Reference

http://secunia.com/advisories/21552 http://www.justsystem.co.jp/info/pd6002.html http://www.securityfocus.com/bid/19550 http://www.symantec.com/enterprise/security_response/weblog/2006/08/justsystems_ichitaro_0day_used.html http://www.symantec.com/enterprise/security_response/writeup.jsp?docid=2006-081615-5201-99 http://www.vupen.com/english/advisories/2006/3332 https://exchange.xforce.ibmcloud.com/vulnerabilities/28484