Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4886

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2012-4886
Last Modified 24 Mar 2014 06:14:15
Published 24 Mar 2014 12:43:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-4886

Summary

Stack-based buffer overflow in wpsio.dll in Kingsoft WPS Office 2012 possibly 8.1.0.3238 allows remote attackers to execute arbitrary code via a long BSTR string.

Vulnerable Systems

Application

  • Kingsoft Office 2012 8.1.0.3238


References

XF - wpsoffice-wpsio-bo(83862)

BID - 59529

EXPLOIT-DB - 25140

FULLDISC - 20130427 WPS Office Wpsio.dll Stack Buffer Overflow Vulnerability

MISC - http://packetstormsecurity.com/files/121431/WPS-Office-Stack-Buffer-Overflow.html

OSVDB - 92847


Last Updated: 27 May 2016 10:58:38