CVE-2018-3978

Name of the Vulnerable Software and Affected Versions Atlantis Word Processor versions 3.0.2.3 through 3.0.2.5

Description The issue is related to an out-of-bounds write in the Word Document parser. A specially crafted document can cause the software to write a value outside the bounds of a heap allocation, resulting in a buffer overflow. To trigger this, an attacker must convince a victim to open a malicious document.

Recommendations For versions 3.0.2.3 through 3.0.2.5, avoid opening documents from untrusted sources until a patch is available. As a temporary workaround, consider restricting the use of the Word Document parser to minimize the risk of exploitation.