Description
Stack-based buffer overflow in wpsio.dll in Kingsoft WPS Office 2012 possibly 8.1.0.3238 allows remote attackers to execute arbitrary code via a long BSTR string.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Zhangjiantao · textdoswindows
https://www.exploit-db.com/exploits/25140
References (6)
Core 6
Core References
Exploit x_refsource_misc
http://packetstormsecurity.com/files/121431/WPS-Office-Stack-Buffer-Overflow.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/83862
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/92847
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/59529
Mailing List mailing-list
x_refsource_fulldisc
http://seclists.org/fulldisclosure/2013/Apr/247
Exploit exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/25140
Scores
EPSS
0.5344
EPSS Percentile
98.0%
Details
CWE
CWE-119
Status
published
Products (1)
kingsoft/office_2012
8.1.0.3238
Published
Mar 24, 2014
Tracked Since
Feb 18, 2026