HTTP: SoftMaker Office PlanMaker PMD Out of Bounds Write

This signature detects attempts to exploit a known vulnerability against SoftMaker Office PlanMaker. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the SoftMaker Office.

Extended Description

An exploitable heap-based buffer overflow vulnerability exists in the PlanMaker document parsing functionality of SoftMaker Office 2021s PlanMaker application. A specially crafted document can cause the document parser to explicitly trust a length from a particular record type and use it to write a 16-bit null relative to a buffer allocated on the stack. Due to a lack of bounds-checking on this value, this can allow an attacker to write to memory outside of the buffer and controllably corrupt memory. This can allow an attacker to earn code execution under the context of the application. An attacker can entice the victim to open a document to trigger this vulnerability.

Affected Products

Softmaker planmaker_2021

References

CVE: CVE-2020-13580

Short Name
HTTP:STC:DL:SFMK-OFC-PMD-OOB
Severity
Minor
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
Bounds CVE-2020-13580 Office Out PMD PlanMaker SoftMaker Write of
Release Date
05/17/2021
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3383
False Positive
Rarely
Vendors

Softmaker

CVSS Score

6.8

Found a potential security threat?