CVE-2018-3983

Name of the Vulnerable Software and Affected Versions Atlantis Word Processor (affected versions not specified)

Description The issue concerns an uninitialized pointer vulnerability in the Word document parser. It can be triggered by a specially crafted document, causing an array fetch to return an uninitialized pointer. This pointer is then used in arithmetic operations before writing a value to the result, potentially allowing an attacker to corrupt heap memory and execute code under the context of the application. The attacker must convince the victim to open the malicious document to exploit this issue.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.