mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 01:04:30 +00:00
889 B
889 B
CVE-2018-3975
Description
An exploitable uninitialized variable vulnerability exists in the RTF-parsing functionality of Atlantis Word Processor 3.2.6 version. A specially crafted RTF file can leverage an uninitialized stack address, resulting in an out-of-bounds write, which in turn could lead to code execution.
POC
Reference
- https://talosintelligence.com/vulnerability_reports/TALOS-2018-0641
- https://talosintelligence.com/vulnerability_reports/TALOS-2018-0641
Github
No PoCs found on GitHub currently.