Out-of-Bounds Write Vulnerability in Antenna House Office Server Document Converter

CVE-2018-3933 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

An exploitable out-of-bounds write exists in the Microsoft Word document conversion functionality of the Antenna House Office Server Document Converter version V6.1 Pro MR2 for Linux64 (6,1,2018,0312). A crafted Microsoft Word (DOC) document can lead to an out-of-bounds write, resulting in remote code execution. This vulnerability occurs in the `vbputanld` method.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.