PT-2018-16372 · Atlantis · Atlantis Word Processor

Publicado

2018-12-01

Atualizado

2022-06-07

CVE-2018-4039

CVSS v3.1

8.8

Alta

Vetor

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Atlantis Word Processor version 3.2.7.2

Description An out-of-bounds write issue exists in the PNG implementation, allowing an attacker to corrupt memory, potentially leading to code execution under the context of the application. This can be triggered by convincing a victim to open a specially crafted document.

Recommendations For Atlantis Word Processor version 3.2.7.2, update to a newer version that contains a fix for this issue, as using a specially crafted document can lead to code execution.

Exploit

Correção

Memory Corruption

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-787

Identificadores relacionados

CVE-2018-4039

Produtos afetados

Atlantis Word Processor

PT-2018-16372 · Atlantis · Atlantis Word Processor

CVE-2018-4039

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3