PT-2018-17415 · Kingsoft · Kingsoft Wps Office

Publicado

2018-01-25

Atualizado

2018-02-12

CVE-2018-6217

CVSS v3.1

5.5

Média

Vetor

AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Kingsoft WPS Office versions 10.1.0.7106 through 10.2.0.5978

Description The issue allows remote attackers to cause a denial of service, resulting in an application crash. This can be achieved through a crafted web page, office document, or .rtf file.

Recommendations For Kingsoft WPS Office version 10.1.0.7106, update to a version that contains a fix for this issue. For Kingsoft WPS Office version 10.2.0.5978, update to a version that contains a fix for this issue. As a temporary workaround, consider avoiding the use of potentially crafted web pages, office documents, or .rtf files until a patch is available.

Exploit

Correção

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-20

Identificadores relacionados

CVE-2018-6217

Produtos afetados

Kingsoft Wps Office

PT-2018-17415 · Kingsoft · Kingsoft Wps Office

CVE-2018-6217

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3