2 matches found
CVE-2013-3934
The CVE-2013-3934 entry concerns Kingsoft Writer (Kingsoft Office) vulnerable to a stack-based buffer overflow in 2012-era builds (notably 8.1.0.3030) when processing a WPS file with a long font name. The underlying issue is a buffer overflow in the font-name handling path, allowing remote code e...
CVE-2012-4886
CVE-2012-4886 describes a stack-based buffer overflow in Kingsoft WPS Office 2012’s wpsio.dll (likely version 8.1.0.3238 or similar). A long BSTR string copied into a stack buffer enables a remote attacker to execute arbitrary code. Public PoCs and exploits exist (e.g., Exploit-DB, PoC binaries, ...