3 matches found
CVE-2020-13586
A memory corruption vulnerability exists in the Excel Document SST Record 0x00fc functionality of SoftMaker Software GmbH SoftMaker Office PlanMaker 2021 Revision 1014. A specially crafted malformed file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this...
CVE-2020-13586
creationtimestamp| type| source ---|---|--- 2021-02-04 12:34:09+00:00| seen| https://t.me/cibsecurity/23053...
CVE-2020-13586
SoftMaker Office PlanMaker 2021 (Revision 1014) contains a memory corruption vulnerability in the Excel SST record 0x00fc. The parser allocates a fixed 0x6060-byte heap buffer for the SST data and then performs a memcpy using the record length read from the file, which can exceed the allocation (...