CVE-2018-4000

An exploitable double-free vulnerability exists in the Office Open XML parser of Atlantis Word Processor, version 3.2.5.0. A specially crafted document can cause a TTableRow instance to be referenced twice, resulting in a double-free vulnerability when both the references go out of scope. An attacker must convince a victim to open a document in order to trigger this vulnerability.
References
Link Resource
https://talosintelligence.com/vulnerability_reports/TALOS-2018-0668 Exploit Technical Description Third Party Advisory
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:atlantiswordprocessor:atlantis_word_processor:3.2.5.0:*:*:*:*:*:*:*

Information

Published : 2018-10-01 13:29

Updated : 2023-02-03 17:19


NVD link : CVE-2018-4000

Mitre link : CVE-2018-4000


JSON object : View

CWE
CWE-415

Double Free

Advertisement

dedicated server usa

Products Affected

atlantiswordprocessor

  • atlantis_word_processor