Stack-Based Buffer Overflow in Hyland Perceptive Document Filters
CVE-2018-3851

8.8HIGH

Key Information:

Vendor: Hyland Software, Inc.
Status: Perceptive Document Filters
Vendor: CVE Published:; 26 April 2018

🔔 Create Hyland Software, Inc. Vulnerability Alert

What is CVE-2018-3851?

The Hyland Perceptive Document Filters version 11.4.0.2647 contains a stack-based buffer overflow vulnerability in its DOC-to-HTML conversion feature. An attacker can exploit this vulnerability by crafting a malicious .doc file, leading to a stack overflow and potentially allowing for arbitrary code execution. This can pose significant risks to systems utilizing this document processing functionality on both Windows and Linux platforms.

Affected Version(s)

Perceptive Document Filters 11.4.0.2647 - x86/x64 Windows/Linux

References

http://www.securityfocus.com/bid/104023

vdb-entryx_refsource_BID

https://talosintelligence.com/vulnerability_reports/TALOS...

x_refsource_MISC

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 26, 2018
Vulnerability Reserved
Jan 2, 2018

JSON