CVE-2018-4001

HIGH

Atlantis Word Processor 3.2.5.0 - Code Injection

Title source: llm

Description

An exploitable uninitialized pointer vulnerability exists in the Office Open XML parser of Atlantis Word Processor, version 3.2.5.0. A specially crafted document can cause an uninitialized pointer representing a TTableRow to be assigned to a variable on the stack. This variable is later dereferenced and then written to allow for controlled heap corruption, which can lead to code execution under the context of the application. An attacker must convince a victim to open a document in order to trigger this vulnerability.

References (1)

[Exploit, Technical Description, Third Party Advisory] https://talosintelligence.com/vulnerability_reports/TALOS-2018-0669

Scores

CVSS v3 7.8

EPSS 0.0084

EPSS Percentile 74.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE

CWE-824

Status published

Products (1)

atlantiswordprocessor/atlantis_word_processor 3.2.5

Published Oct 01, 2018

Tracked Since Feb 18, 2026