CVE-2013-3934

Kingsoft Writer 2012 8.1.0.3030 - Stack-based Buffer Overflow via Long Font Name in WPS File

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2013-3934. PoCs published by Julien Ahrens.

AI-analyzed exploit summary This Python script generates a malicious .wps file that exploits a buffer overflow vulnerability in Kingsoft Office Writer v2012 8.1.0.3385 (CVE-2013-3934). It bypasses SafeSEH protection and triggers arbitrary code execution via a crafted file header.

Description

Stack-based buffer overflow in Kingsoft Writer 2012 8.1.0.3030, as used in Kingsoft Office 2013 before 9.1.0.4256, allows remote attackers to execute arbitrary code via a long font name in a WPS file.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Julien Ahrens · pythonlocalwindows
https://www.exploit-db.com/exploits/29922

This Python script generates a malicious .wps file that exploits a buffer overflow vulnerability in Kingsoft Office Writer v2012 8.1.0.3385 (CVE-2013-3934). It bypasses SafeSEH protection and triggers arbitrary code execution via a crafted file header.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Kingsoft Office Writer v2012 8.1.0.3385
No auth needed
Prerequisites: Victim must open the malicious .wps file in vulnerable Kingsoft Office Writer version
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (3)

Core 3
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/53266
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/61796
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1028920

Scores

EPSS 0.0975
EPSS Percentile 94.9%

Details

CWE
CWE-119
Status published
Products (2)
kingsoft/office_2012 8.1.0.3385
kingsoft/writer_2012 8.1.0.3030
Published Sep 10, 2013
Tracked Since Feb 18, 2026