CVE-2016-8383

Summary

An exploitable heap corruption vulnerability exists in the Doc_GetFontTable functionality of AntennaHouse DMC HTMLFilter. A specially crafted doc file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide malicious doc file to trigger this vulnerability.

Affected Software

VendorProductVersion RangeStatus
Antenna HouseAntennaHouseDMC HTMLFilter shipped with MarkLogic 8.0-5.5affected

Weaknesses

  • arbitrary code execution

ADP Enrichment

CVE Program Container

Additional References

References