Vulnerabilities > CVE-2018-4039 - Out-of-bounds Write vulnerability in Atlantiswordprocessor Atlantis Word Processor 3.2.7.2
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
An exploitable out-of-bounds write vulnerability exists in the PNG implementation of Atlantis Word Processor, version 3.2.7.2. This can allow an attacker to corrupt memory, which can result in code execution under the context of the application. An attacker must convince a victim to open a specially crafted document in order to trigger this vulnerability.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Common Weakness Enumeration (CWE)
Talos
id | TALOS-2018-0712 |
last seen | 2019-05-29 |
published | 2018-11-20 |
reporter | Talos Intelligence |
source | http://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0712 |
title | Atlantis Word Processor Huffman table code length remote code execution vulnerability |
The Hacker News
id | THN:256E89A426EB6F7EB8009CE059DA58AD |
last seen | 2018-11-20 |
modified | 2018-11-20 |
published | 2018-11-20 |
reporter | The Hacker News |
source | https://thehackernews.com/2018/11/word-processor-vulnerability.html |
title | 3 New Code Execution Flaws Discovered in Atlantis Word Processor |