116 matches found
CVE-2017-2793
An exploitable heap corruption vulnerability exists in the UnCompressUnicode functionality of Antenna House DMC HTMLFilter used by MarkLogic 8.0-6. A specially crafted xls file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide malicious XLS file to...
CVE-2017-2797
An exploitable heap overflow vulnerability exists in the ParseEnvironment functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6...
CVE-2017-2783
CVE-2017-2783 describes a heap-corruption/code-execution vulnerability in Antenna House DMC HTMLFilter’s FillRowFormat, shipped with MarkLogic 8.0-6. The root cause is a missing upper-bound check on a 0x27E record’s 0x0200 column index (col). While the code verifies that col >= colMic, it does...
CVE-2017-2794
An exploitable stack-based buffer overflow vulnerability exists in the DHFSummary functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted PPT file can cause a stack corruption resulting in arbitrary code execution. An attacker can send/provide malicious PPT fi...
CVE-2017-2794
Summary of CVE-2017-2794 (connected details present): The vulnerability exists in the DHFSummary function of AntennaHouse DMC HTMLFilter (used by MarkLogic 8.0-6). A specially crafted PPT can trigger a stack-based buffer overflow via an overflowSize value read from Summary Information, then copie...
CVE-2017-2793
CVE-2017-2793 exploits a heap corruption in Antenna House DMC HTMLFilter (used by MarkLogic 8.0-6) via UnCompressUnicode during XLS string handling. The bug stems from a malformed XLUnicodeString with cch = 0xF203 (61955), which far exceeds the documented 32767 limit. InitMem allocates 65538-byte...
CVE-2017-2797
CVE-2017-2797 affects AntennaHouse DMC HTMLFilter (ParseEnvironment) as used by MarkLogic 8.0-6. A heap-based buffer overflow occurs due to inconsistent sizing between allocated buffer (textMasterStyleAtom.size) and the subsequent read size (fontEntityAtom.size) in the PPT parsing flow. Specifica...
AntennaHouse DMC HTMLFilter AddSst Code Execution Vulnerability
Summary An exploitable heap corruption vulnerability exists in the AddSst functionality of AntennaHouse DMC HTMLFilter as used by MarkLogioc 8.0-6. A specially crafted XLS file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide a malicious XLS file to...
AntennaHouse DMC HTMLFilter PPT DHFSummary Code Execution Vulnerability
Summary An exploitable stack-based buffer overflow vulnerability exists in the DHFSummary functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted PPT file can cause a stack corruption resulting in arbitrary code execution. An attacker can send/provide maliciou...
AntennaHouse DMC HTMLFilter Doc_GetFontTable Code Execution Vulnerability
Summary An exploitable heap corruption vulnerability exists in the DocGetFontTable functionality of AntennaHouse DMC HTMLFilter. A specially crafted doc file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide malicious doc file to trigger this...
AntennaHouse DMC HTMLFilter PPT ParseEnvironment Code Execution Vulnerability
Summary An exploitable heap overflow vulnerability exists in the ParseEnvironment functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted PPT file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide malicious PPT fil...
AntennaHouse DMC HTMLFilter GetIndexArray Code Execution Vulnerability
Summary An exploitable heap corruption vulnerability exists in the GetIndexArray functionality of AntennaHouse DMC HTMLFilter as used by MarkLogioc 8.0-6. A specially crafted XLS file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide a malicious XLS...
AntennaHouse DMC HTMLFilter Txo Code Execution Vulnerability
Summary An exploitable heap corruption vulnerability exists in the Txo functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted xls file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide malicious XLS file to trigge...
AntennaHouse DMC HTMLFilter Doc_SetSummary Code Execution Vulnerability
AntennaHouse DMC HTMLFilter DocSetSummary Code Execution Vulnerability Summary An exploitable heap corruption vulnerability exists in the DocSetSummary functionality of AntennaHouse DMC HTMLFilter. A specially crafted doc file can cause a heap corruption resulting in arbitrary code execution. An...
AntennaHouse DMC HTMLFilter iBldDirInfo Code Execution Vulnerability
Summary An exploitable heap corruption vulnerability exists in the iBldDirInfo functionality of AntennaHouse DMC HTMLFilter used by MarkLogic 8.0-6. A specially crafted xls file can cause a heap corruption resulting in arbitrary code execution. An attacker can provide a malicious xls file to...
DB2 Monitoring Console Multiple Unspecified Security Bypass Vulnerabilities
The host is running IBM DMC and is prone to multiple Unspecified Security Bypass Vulnerabilities. OpenVAS Vulnerability Test $Id: gbibmdb2mcmultunspecifiedvuln.nasl 4869 2016-12-29 11:01:45Z teissa $ DB2 Monitoring Console Multiple Unspecified Security Bypass Vulnerabilities Authors: Antu Sanadi...