CVE-2017-2910
- EPSS 2.09%
- Veröffentlicht 02.12.2020 18:15:12
- Zuletzt bearbeitet 21.11.2024 03:24:26
An exploitable Out-of-bounds Write vulnerability exists in the xls_addCell function of libxls 2.0. A specially crafted xls file can cause a memory corruption resulting in remote code execution. An attacker can send malicious xls file to trigger this ...
CVE-2018-20452
- EPSS 1.51%
- Veröffentlicht 25.12.2018 17:29:00
- Zuletzt bearbeitet 21.11.2024 04:01:30
The read_MSAT_body function in ole.c in libxls 1.4.0 has an invalid free that allows attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted file, because of inconsistent memory management (n...
CVE-2018-20450
- EPSS 1.06%
- Veröffentlicht 25.12.2018 17:29:00
- Zuletzt bearbeitet 21.11.2024 04:01:30
The read_MSAT function in ole.c in libxls 1.4.0 has a double free that allows attackers to cause a denial of service (application crash) via a crafted file, a different vulnerability than CVE-2017-2897.
CVE-2017-12109
- EPSS 2.77%
- Veröffentlicht 24.04.2018 19:29:01
- Zuletzt bearbeitet 21.11.2024 03:08:50
An exploitable integer overflow vulnerability exists in the xls_preparseWorkSheet function of libxls 1.4 when handling a MULRK record. A specially crafted XLS file can cause a memory corruption resulting in remote code execution. An attacker can send...
CVE-2017-12108
- EPSS 2.77%
- Veröffentlicht 24.04.2018 19:29:01
- Zuletzt bearbeitet 21.11.2024 03:08:50
An exploitable integer overflow vulnerability exists in the xls_preparseWorkSheet function of libxls 1.4 when handling a MULBLANK record. A specially crafted XLS file can cause a memory corruption resulting in remote code execution. An attacker can s...
CVE-2017-12110
- EPSS 2.1%
- Veröffentlicht 20.11.2017 22:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
An exploitable integer overflow vulnerability exists in the xls_appendSST function of libxls 1.4.A specially crafted XLS file can cause memory corruption resulting in remote code execution.
CVE-2017-2919
- EPSS 2.06%
- Veröffentlicht 20.11.2017 22:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
An exploitable stack based buffer overflow vulnerability exists in the xls_getfcell function of libxls 1.3.4. A specially crafted XLS file can cause a memory corruption resulting in remote code execution. An attacker can send malicious XLS file to tr...
CVE-2017-2897
- EPSS 2.06%
- Veröffentlicht 20.11.2017 22:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
An exploitable out-of-bounds write vulnerability exists in the read_MSAT function of libxls 1.4. A specially crafted XLS file can cause a memory corruption resulting in remote code execution. An attacker can send malicious XLS file to trigger this vu...
CVE-2017-2896
- EPSS 2.05%
- Veröffentlicht 20.11.2017 22:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
An exploitable out-of-bounds write vulnerability exists in the xls_mergedCells function of libxls 1.4. . A specially crafted XLS file can cause a memory corruption resulting in remote code execution. An attacker can send malicious XLS file to trigger...
CVE-2017-12111
- EPSS 2.08%
- Veröffentlicht 20.11.2017 22:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
An exploitable out-of-bounds vulnerability exists in the xls_addCell function of libxls 1.4. A specially crafted XLS file with a formula record can cause memory corruption resulting in remote code execution. An attacker can send a malicious XLS file ...