CVE-2018-3933

Summary

An exploitable out-of-bounds write exists in the Microsoft Word document conversion functionality of the Antenna House Office Server Document Converter version V6.1 Pro MR2 for Linux64 (6,1,2018,0312). A crafted Microsoft Word (DOC) document can lead to an out-of-bounds write, resulting in remote code execution. This vulnerability occurs in the vbputanld method.

Affected Software

VendorProductVersion RangeStatus
Antenna HouseAntenna HouseOffice Server Document Converter version V6.1 Pro MR2 for Linux64 (6,1,2018,0312)affected

Weaknesses

  • stack-based buffer overflow

ADP Enrichment

CVE Program Container

Additional References

References