CVEs-PoC/2018/CVE-2018-4001.md at 183d1f8677d424ca51cab102bc615f8bcebb511d

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-30 09:09:31 +02:00

Files

T

0xMarcio ba290685fe Update CVE sources 2024-06-09 00:33

2024-06-09 00:33:16 +00:00

Description

An exploitable uninitialized pointer vulnerability exists in the Office Open XML parser of Atlantis Word Processor, version 3.2.5.0. A specially crafted document can cause an uninitialized pointer representing a TTableRow to be assigned to a variable on the stack. This variable is later dereferenced and then written to allow for controlled heap corruption, which can lead to code execution under the context of the application. An attacker must convince a victim to open a document in order to trigger this vulnerability.

POC

Reference

https://talosintelligence.com/vulnerability_reports/TALOS-2018-0669
https://talosintelligence.com/vulnerability_reports/TALOS-2018-0669

Github

No PoCs found on GitHub currently.

1.1 KiB Raw Blame History

CVE-2018-4001

Description

POC

Reference

Github

1.1 KiB

Raw Blame History