Lucene search

Kaspersky LabKLA10519

HistoryMar 31, 2015 - 12:00 a.m.

KLA10519 Multiple vulnerabilities in FreeXL

2015-03-3100:00:00

Kaspersky Lab

threats.kaspersky.com

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.05 Low

EPSS

Percentile

92.7%

JSON

Detect date:

03/31/2015

Severity:

High

Description:

An unspecified vulnerability was found in FreeXL. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited remotely via a specially designed workbook.

Affected products:

FreeXL versions earlier than 1.0.0i

Solution:

Update to the latest version
Get FreeXL

Impacts:

ACE

Related products:

FreeXL

CVE-IDS:

CVE-2015-27764.3Warning
CVE-2015-27546.8High
CVE-2015-27536.8High

References

www.gaia-gis.it/gaia-sins/freexl-sources/

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2753

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2754

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2776

statistics.securelist.com/vulnerability-scan/month

threats.kaspersky.com/en/product/FreeXL/

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.05 Low

EPSS

Percentile

92.7%

JSON

Related for KLA10519