You are here

V-219: Kingsoft Writer 2012 WPS Font Names Buffer Overflow Vulnerability

August 16, 2013 - 5:52am

Addthis

PROBLEM:

Kaveh Ghaemmaghami has discovered a vulnerability in Kingsoft Writer 2012, which can be exploited by malicious people to compromise a user's system.
 

PLATFORM:

Kingsoft Office 2012, Kingsoft Weirwe 2012 8.x
 

ABSTRACT:

The vulnerability is confirmed in the following products and versions:
* Kingsoft Writer   2012 version 8.1.0.3030.
* Kingsoft Writer 2012 bundled in Kingsoft Office 2012 version 8.1.0.3385.

REFERENCE LINKS:

Secunia Advisory SA53266
CVE-2013-3934

IMPACT ASSESSMENT:

High

DISCUSSION:

The vulnerability is caused due to a boundary error in when handling font names and can be   exploited to cause a stack-based buffer overflow via a specially crafted WPS file with an overly long font name.
 

IMPACT:

System access

SOLUTION:

 
Fixed in Kingsoft Office 2013 version 9.1.0.4256.
 

Addthis