CVE-2017-12108

2018-04-24T19:29:00
ID CVE-2017-12108
Type cve
Reporter cve@mitre.org
Modified 2018-05-25T14:31:00

Description

An exploitable integer overflow vulnerability exists in the xls_preparseWorkSheet function of libxls 1.4 when handling a MULBLANK record. A specially crafted XLS file can cause a memory corruption resulting in remote code execution. An attacker can send malicious XLS file to trigger this vulnerability.