Sarid Harper has discovered a vulnerability in Crimson Editor, which can be exploited by malicious, anonymous individuals to compromise a vulnerable system.
The vulnerability is caused as a result of improper bounds checking when reading words from dictionary files. This can be exploited to cause a stack-based buffer overflow by tricking a user into using a maliciously constructed dictionary file.
Successful exploitation of this vulnerability enables execution of arbitrary code.
This vulnerability is confirmed in the following versions:
- Crimson Editor SVN263 English
- Crimson Editor 3.70 Release (Freeware)
Other versions may also be affected.
The following screen dump illustrates this issue:
Update to Crimson Editor SVN286 English:
- Vulnerability identified: 02.01.10
- Vendor informed: 25.03.10
- Vendor fix: 02.04.10