CVE-2021-26618

An improper input validation leading to arbitrary file creation was discovered in ToWord of ToOffice. Remote attackers use this vulnerability to execute arbitrary file included malicious code...

Input validation

An improper input validation leading to arbitrary file creation was discovered in ToWord of ToOffice. Remote attackers use this vulnerability to execute arbitrary file included malicious code...

CVE-2021-26618

The CVE-2021-26618 entry relates to TmaxSoft ToOffice/ToWord, caused by improper input validation that enables arbitrary file creation. Remote attackers can leverage this to execute arbitrary code contained in malicious files. The provided datasets confirm the vulnerability, its impact (arbitrary...