RSS   Vulnerabilities for 'Wps office free'   RSS

2018-03-12
 
CVE-2018-6400

CWE-264
 

 
Kingsoft WPS Office Free 10.2.0.5978 allows local users to gain privileges or cause a denial of service by impersonating all the pipes through a use of \\.\pipe\WPSCloudSvr\WpsCloudSvr -- an "insecurely created named pipe." Ensures full access to Everyone users group.

 

 >>> Vendor: Kingsoftstore 2 Products
Kingsoft wps office
Wps office free


Copyright 2019, cxsecurity.com

 

Back to Top