An exploitable uninitialized pointer vulnerability exists in the Office Open XML parser of Atlantis Word Processor, version 3.2.5.0. A specially crafted document can cause an uninitialized pointer representing a TTableRow to be assigned to a variable on the stack. This variable is later dereferenced and then written to allow for controlled heap corruption, which can lead to code execution under the context of the application. An attacker must convince a victim to open a document in order to trigger this vulnerability.
References
Link | Resource |
---|---|
https://talosintelligence.com/vulnerability_reports/TALOS-2018-0669 | Exploit Technical Description Third Party Advisory |
https://talosintelligence.com/vulnerability_reports/TALOS-2018-0669 | Exploit Technical Description Third Party Advisory |
Configurations
History
21 Nov 2024, 04:06
Type | Values Removed | Values Added |
---|---|---|
References | () https://talosintelligence.com/vulnerability_reports/TALOS-2018-0669 - Exploit, Technical Description, Third Party Advisory |
Information
Published : 2018-10-01 20:29
Updated : 2024-11-21 04:06
NVD link : CVE-2018-4001
Mitre link : CVE-2018-4001
CVE.ORG link : CVE-2018-4001
JSON object : View
Products Affected
atlantiswordprocessor
- atlantis_word_processor
CWE
CWE-824
Access of Uninitialized Pointer