CVE-2012-1242

Untrusted search path vulnerability in JustSystems Ichitaro 2011 Sou, Ichitaro 2006 through 2011, Ichitaro Government 2006 through 2010, Ichitaro Portable with oreplug, Ichitaro Viewer, JUST School, JUST School 2009 and 2010, JUST Jump 4, JUST Frontier, and oreplug allows local users to gain privileges via a Trojan horse DLL in the current working directory.

Published: Apr 27, 2012
Updated: Apr 13, 2023
CVE: CVE-2012-1242
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.9
AV:L/AC:M/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
justsystems / just_school	2010	2010.x
justsystems / ichitaro	2006	2006.x
justsystems / just_school	2009	2009.x
justsystems / ichitaro	2011	2011.x
justsystems / ichitaro	2008	2008.x
justsystems / ichitaro	2010	2010.x
justsystems / ichitaro	2007	2007.x
justsystems / ichitaro	2009	2009.x
justsystems / just_jump	4	4.x

http://jvn.jp/en/jp/JVN95378720/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2012-000034
http://osvdb.org/81472
http://www.justsystems.com/jp/info/js12001.html

Vulnerability Database

289,697

CVE-2012-1242