1. Home
  2. Mapping Frameworks
  3. CVE Home
  4. CNCSoft with ScreenEditor

CVE CVE-2018-10636 Mappings

CNCSoft Version 1.00.83 and prior with ScreenEditor Version 1.00.54 has multiple stack-based buffer overflow vulnerabilities that could cause the software to crash due to lacking user input validation before copying data from project files onto the stack. Which may allow an attacker to gain remote code execution with administrator privileges if exploited.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name
CVE-2018-10636 CNCSoft with ScreenEditor primary_impact T1574 Hijack Execution Flow
CVE-2018-10636 CNCSoft with ScreenEditor primary_impact T1499.004 Application or System Exploitation
CVE-2018-10636 CNCSoft with ScreenEditor secondary_impact T1068 Exploitation for Privilege Escalation