Vulnerabilities > CVE-2018-4039 - Out-of-bounds Write vulnerability in Atlantiswordprocessor Atlantis Word Processor 3.2.7.2
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
An exploitable out-of-bounds write vulnerability exists in the PNG implementation of Atlantis Word Processor, version 3.2.7.2. This can allow an attacker to corrupt memory, which can result in code execution under the context of the application. An attacker must convince a victim to open a specially crafted document in order to trigger this vulnerability.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Common Weakness Enumeration (CWE)
Talos
id | TALOS-2018-0712 |
last seen | 2019-05-29 |
published | 2018-11-20 |
reporter | Talos Intelligence |
source | http://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0712 |
title | Atlantis Word Processor Huffman table code length remote code execution vulnerability |
The Hacker News
id | THN:256E89A426EB6F7EB8009CE059DA58AD |
last seen | 2018-11-20 |
modified | 2018-11-20 |
published | 2018-11-20 |
reporter | The Hacker News |
source | https://thehackernews.com/2018/11/word-processor-vulnerability.html |
title | 3 New Code Execution Flaws Discovered in Atlantis Word Processor |