CyberSec.Space Logo
Back to CVE Browser

CVE-2018-3933

HIGH
8.8
CVSS Severity Score
EPSS Score0.1720%
EPSS Percentile43.49th
PublishedJul 11, 2018
Last ModifiedNov 21, 2024

Vulnerability Description

An exploitable out-of-bounds write exists in the Microsoft Word document conversion functionality of the Antenna House Office Server Document Converter version V6.1 Pro MR2 for Linux64 (6,1,2018,0312). A crafted Microsoft Word (DOC) document can lead to an out-of-bounds write, resulting in remote code execution. This vulnerability occurs in the `vbputanld` method.

Affected Platforms (CPE)

📦
Antennahouse

Office Server Document Converter

= 6.1

References & Advisories

🔗 https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0600
🔗 https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0600

Related Vulnerabilities

CVE-2019-50199.8

A heap-based overflow vulnerability exists in the PowerPoint document conversion function of Rainbow PDF Office Server Document Co...

CVE-2010-02639.3

Microsoft Office Excel 2007 SP1 and SP2; Office 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer SP1 and ...

CVE-2019-50308.8

A buffer overflow vulnerability exists in the PowerPoint document conversion function of Rainbow PDF Office Server Document Conver...

CVE-2018-39328.8

An exploitable stack-based buffer overflow exists in the Microsoft Word document conversion functionality of the Antenna House Off...