97 matches found
CVE-2020-28587
CVE-2020-28587 affects SoftMaker Office PlanMaker 2021 (Revision 1014). A specially crafted Excel-like document can trigger a heap-based buffer overflow during Office Art/CEscher parsing when copying record contents into a fixed-size object, enabling memory corruption. The advisory describes mult...
PT-2021-11559 · Softmaker · Softmaker Office Planmaker
Name of the Vulnerable Software and Affected Versions: SoftMaker Office PlanMaker version 2021 Revision 1014 Description: A specially crafted document can cause the document parser to copy data from a particular record type into a static-sized buffer within an object that is smaller than the size...
CVE-2020-13581
In SoftMaker Software GmbH SoftMaker Office PlanMaker 2021 Revision 1014, a specially crafted document can cause the document parser to copy data from a particular record type into a buffer that is smaller than the size used for the copy which will cause a heap-based buffer overflow. An attacker...
CVE-2020-13581
In SoftMaker Software GmbH SoftMaker Office PlanMaker 2021 Revision 1014, a specially crafted document can cause the document parser to copy data from a particular record type into a buffer that is smaller than the size used for the copy which will cause a heap-based buffer overflow. An attacker...
CVE-2020-27250
In SoftMaker Software GmbH SoftMaker Office PlanMaker 2021 Revision 1014, a specially crafted document can cause the document parser to copy data from a particular record type into a static-sized buffer within an object that is smaller than the size used for the copy, which will cause a heap-base...
Heap overflow
In SoftMaker Software GmbH SoftMaker Office PlanMaker 2021 Revision 1014, a specially crafted document can cause the document parser to copy data from a particular record type into a static-sized buffer within an object that is smaller than the size used for the copy, which will cause a heap-base...
CVE-2020-13581
Summary (CVE-2020-13581) : A heap-based buffer overflow exists in SoftMaker Office PlanMaker 2021 (Revision 1014) parsing the PlanMaker Document format. The 0x800D record handler allocates a 2048-byte buffer, reads a length from the record, and copies the data with memcpy using that length. If th...
CVE-2020-13581
In SoftMaker Software GmbH SoftMaker Office PlanMaker 2021 Revision 1014, a specially crafted document can cause the document parser to copy data from a particular record type into a buffer that is smaller than the size used for the copy which will cause a heap-based buffer overflow. An attacker...
CVE-2020-13546
The CVE-2020-13546 entry affects SoftMaker Office TextMaker 2021 (revision 1014). A crafted .tmd document triggers a heap-based buffer overflow during parsing of a TextMaker document record type 0x002a due to an integer overflow: a 32-bit length read from the file is multiplied by 0x23c, producin...
CVE-2020-27248
A specially crafted document can cause the document parser to copy data from a particular record type into a static-sized buffer within an object that is smaller than the size used for the copy, which will cause a heap-based buffer overflow. In version/Instance 0x0003 and 0x0014, an attacker can...
CVE-2020-27249
A specially crafted document can cause the document parser to copy data from a particular record type into a static-sized buffer within an object that is smaller than the size used for the copy, which will cause a heap-based buffer overflow. In version/Instance 0x0004 and 0x0015, an attacker can...
CVE-2020-27247
A specially crafted document can cause the document parser to copy data from a particular record type into a static-sized buffer within an object that is smaller than the size used for the copy, which will cause a heap-based buffer overflow. In version/Instance 0x0002, an attacker can entice the...
CVE-2020-13580
An exploitable heap-based buffer overflow vulnerability exists in the PlanMaker document parsing functionality of SoftMaker Office 2021’s PlanMaker application. A specially crafted document can cause the document parser to explicitly trust a length from a particular record type and use it to writ...
Heap overflow
A specially crafted document can cause the document parser to copy data from a particular record type into a static-sized buffer within an object that is smaller than the size used for the copy, which will cause a heap-based buffer overflow. In version/Instance 0x0004 and 0x0015, an attacker can...
Heap overflow
A specially crafted document can cause the document parser to copy data from a particular record type into a static-sized buffer within an object that is smaller than the size used for the copy, which will cause a heap-based buffer overflow. In version/Instance 0x0002, an attacker can entice the...
Heap overflow
A specially crafted document can cause the document parser to copy data from a particular record type into a static-sized buffer within an object that is smaller than the size used for the copy, which will cause a heap-based buffer overflow. In version/Instance 0x0003 and 0x0014, an attacker can...
CVE-2020-27249
A specially crafted document can cause the document parser to copy data from a particular record type into a static-sized buffer within an object that is smaller than the size used for the copy, which will cause a heap-based buffer overflow. In version/Instance 0x0004 and 0x0015, an attacker can...
CVE-2020-27249
CVE-2020-27249 affects SoftMaker Office PlanMaker 2021 (Revision 1014). It describes a heap-based buffer overflow in the Office Art/DrawingGroup path: a specially crafted Excel-like document causes MsoDrawingGroup records (0x00eb) and nested Office Art records to be parsed into a fixed-size objec...
CVE-2020-27248
A specially crafted document can cause the document parser to copy data from a particular record type into a static-sized buffer within an object that is smaller than the size used for the copy, which will cause a heap-based buffer overflow. In version/Instance 0x0003 and 0x0014, an attacker can...
CVE-2020-27248
CVE-2020-27248 affects SoftMaker Office PlanMaker 2021 (Revision 1014). The vulnerability arises in Office Art/Office drawing parsing: specifically MsoDrawingGroup with nested OfficeArt records and 0x00eb, 0xf000, and 0xf150 sub-records. Depending on Version/Instance (0x0003/0x0014, 0x0004/0x0015...