CVE-2018-4039

Summary

An exploitable out-of-bounds write vulnerability exists in the PNG implementation of Atlantis Word Processor, version 3.2.7.2. This can allow an attacker to corrupt memory, which can result in code execution under the context of the application. An attacker must convince a victim to open a specially crafted document in order to trigger this vulnerability.

Affected Software

VendorProductVersion RangeStatus
TalosAtlantis Word ProcessorAtlantis Word Processor 3.2.7.1, 3.2.7.2affected

Weaknesses

  • remote code execution

ADP Enrichment

CVE Program Container

Additional References

References