RSS   Vulnerabilities for 'Easy postcard 2016'   RSS

2017-11-02
 
CVE-2017-10870

CWE-284
 

 
In FreeBSD 10.x before 10.4-STABLE, 10.4-RELEASE-p3, and 10.3-RELEASE-p24 named paths are globally scoped, meaning a process located in one jail can read and modify the content of POSIX shared memory objects created by a process in another jail or the host system. As a result, a malicious user that has access to a jailed system is able to abuse shared memory by injecting malicious content in the shared memory region. This memory region might be executed by applications trusting the shared memory, like Squid. This issue could lead to a Denial of Service or local privilege escalation.

 

 >>> Vendor: Justsystems 39 Products
Ichitaro
Hanako
Ichitaro viewer
Sanshiro
Just school
Ichitaro portable
Ichitaro pro
Just frontier
Just jump four
Shuriken
Shuriken pro4
Oreplug
ATOK
Atok flat-rate service
Just smile
Hanako police
Hanako police3
Ichitaro just school
Ichitaro portable with oreplug
Just online update
Hanako pro
Just police
Just jump class
Just government
Just office
Easy postcard 2016
Easy postcard 2017
Easy postcard 2018
Ichitaro 2016
Ichitaro 2017
Ichitaro 2017 trial version
Ichitaro 2018
Ichitaro government 6
Ichitaro government 7
Ichitaro government 8
Ichitaro pro 2
Ichitaro pro 2011
Ichitaro pro 3
Just jump


Copyright 2024, cxsecurity.com

 

Back to Top