Published: 10/09/2013 Updated: 10/09/2013

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 935

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Stack-based buffer overflow in Kingsoft Writer 2012 8.1.0.3030, as used in Kingsoft Office 2013 prior to 9.1.0.4256, allows remote malicious users to execute arbitrary code via a long font name in a WPS file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
kingsoft office 2012 8.1.0.3385
kingsoft writer 2012 8.1.0.3030

#!/usr/bin/python # Exploit Title: Kingsoft Office Writer v2012 8103385 wps Buffer Overflow Exploit (SEH) # Version: 2012 8103385 # Date: 2013-11-27 # Author: Julien Ahrens (@MrTuxracer) # Homepage: wwwrcesecuritycom # Software Link: wwwkingsoftstorecom # Tested on: WinXP-GER, Win7-GER, Win8-E ...

Kingsoft Office Writer 2012 version 8103385 SEH buffer overflow exploit that creates a malicious wps file that pops calcexe ...

CWE-119 http://www.securityfocus.com/bid/61796 http://secunia.com/advisories/53266 http://www.securitytracker.com/id/1028920 https://nvd.nist.gov https://www.exploit-db.com/exploits/29922/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2013-3934

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect