CVE-2017-2154: Input Validation

First published: Fri Apr 28 2017(Updated: )

Untrusted search path vulnerability in Hanako 2017, Hanako 2016, Hanako 2015, Hanako Pro 3, JUST Office 3 [Standard], JUST Office 3 [Eco Print Package], JUST Office 3 & Tri-De DataProtect Package, JUST Government 3, JUST Jump Class 2, JUST Frontier 3, JUST School 6 Premium, Hanako Police 5, JUST Police 3, Hanako 2017 trial version allows remote attackers to gain privileges via a Trojan horse DLL in an unspecified directory.

Credit: vultures@jpcert.or.jp

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• collector/nvd-index
• agent/references
• agent/type
• collector/mitre-cve
• source/MITRE
• agent/last-modified-date
• agent/author
• agent/severity
• agent/weakness
• agent/softwarecombine
• agent/tags
• agent/description
• agent/first-publish-date
• agent/event
• vendor/justsystems
• canonical/justsystems hanako
• version/justsystems hanako/2015
• version/justsystems hanako/2016
• version/justsystems hanako/2017
• canonical/justsystems hanako police
• version/justsystems hanako police/5
• canonical/justsystems hanako pro
• version/justsystems hanako pro/3
• canonical/justsystems just frontier
• version/justsystems just frontier/3
• canonical/justsystems just government
• version/justsystems just government/3
• canonical/justsystems just jump class
• version/justsystems just jump class/2
• canonical/justsystems just office
• version/justsystems just office/3
• canonical/justsystems just police
• version/justsystems just police/3
• canonical/justsystems just school
• version/justsystems just school/6