A specially crafted document can cause the document parser to copy data from a particular record type into a static-sized buffer within an object that is smaller than the size used for the copy, which will cause a heap-based buffer overflow. An attacker can entice the victim to open a document to trigger this vulnerability. This affects SoftMaker Software GmbH SoftMaker Office PlanMaker 2021 (Revision 1014).
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: talos

Published: 2021-02-23T18:11:31

Updated: 2024-08-04T16:40:59.084Z

Reserved: 2020-11-13T00:00:00

Link: CVE-2020-28587

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-02-23T19:15:13.230

Modified: 2024-11-21T05:22:57.400

Link: CVE-2020-28587

cve-icon Redhat

No data.