2 results (0.002 seconds)

CVSS: 9.3EPSS: 66%CPEs: 2EXPL: 1

CVE-2013-3934 – Kingsoft Office Writer 2012 8.1.0.3385 - '.wps' Local Buffer Overflow (SEH)

https://notcve.org/view.php?id=CVE-2013-3934

Stack-based buffer overflow in Kingsoft Writer 2012 8.1.0.3030, as used in Kingsoft Office 2013 before 9.1.0.4256, allows remote attackers to execute arbitrary code via a long font name in a WPS file. Desbordamiento de pila en Kingsoft Writer 2012 8.1.0.3030, al igual que el utilizado en Kingsoft Office 2013 anterior a 9.1.0.4256, permite a atacantes remotos ejecutar código a discrección a través de un nombre de fuente largo en un archivo WPS. • https://www.exploit-db.com/exploits/29922 http://secunia.com/advisories/53266 http://www.securityfocus.com/bid/61796 http://www.securitytracker.com/id/1028920 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 10.0EPSS: 42%CPEs: 1EXPL: 3

CVE-2012-4886 – WPS Office - 'Wpsio.dll' Stack Buffer Overflow

https://notcve.org/view.php?id=CVE-2012-4886

Stack-based buffer overflow in wpsio.dll in Kingsoft WPS Office 2012 possibly 8.1.0.3238 allows remote attackers to execute arbitrary code via a long BSTR string. Desbordamiento de buffer basado en pila en wpsio.dll en Kingsoft WPS Office 2012 posiblemente 8.1.0.3238 permite a atacantes remotos ejecutar código arbitrario a través de una cadena BSTR larga. • https://www.exploit-db.com/exploits/25140 http://osvdb.org/92847 http://packetstormsecurity.com/files/121431/WPS-Office-Stack-Buffer-Overflow.html http://seclists.org/fulldisclosure/2013/Apr/247 http://www.exploit-db.com/exploits/25140 http://www.securityfocus.com/bid/59529 https://exchange.xforce.ibmcloud.com/vulnerabilities/83862 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •