10 matches found
libxls 安全漏洞
libxls is an open-source C library designed for reading old binary OLE-formatted Excel files. Versions of libxls 1.6.3 and earlier contain security vulnerabilities. These vulnerabilities stem from the use of uninitialized memory within the OLE container resolver, which could lead to application...
NULL Pointer Dereference
Overview Affected versions of this package are vulnerable to NULL Pointer Dereference in the readofficedocument function. An attacker can cause a denial of service by providing crafted XLSX files that trigger a null pointer dereference during parsing. Remediation There is no fixed version for xln...
EUVD-2010-3765
Malware in sbrugna...
SUSE CVE-2023-38854
Buffer Overflow vulnerability in libxlsv.1.6.2 allows a remote attacker to execute arbitrary code and cause a denial of service via a crafted XLS file to the transcodelatin1toutf8 function in xlstool.c:296...
Denial of Service (DoS)
Overview xlsx is a Parser and writer for various spreadsheet formats. Affected versions of this package are vulnerable to Denial of Service DoS. An attacker who can send a malicious excel file parsed by this library can cause maximum CPU usage. Note: xlsx package after version 0.18.5 is distribut...
ClamAV 输入验证错误漏洞
Clam AntiVirus ClamAV is an anti-virus package for use on UNIX-like systems. Mainly used in mail servers, using multi-threaded background operation, you can automatically upgrade the virus database. An infinite loop vulnerability exists in the Excel XLM macro analysis module in Clam AntiVirus...
Aspose Aspose.Cells Code Execution Vulnerability
Aspose Aspose.Cells is an Excel spreadsheet programming API Application Programming Interface from Aspose Australia. A code execution vulnerability exists in Aspose Aspose.Cells version 19.1.0, which can be exploited to execute code via specially crafted XLS files...
libxls 'xls_appendSST' function integer overflow vulnerability
libxls is a C library for reading Exce xls files. An integer overflow vulnerability exists in the 'xlsappendSST' function in libxls version 1.4. A remote attacker can exploit this vulnerability to execute code memory corruption with the help of specially crafted XLS files...
Microsoft Office Drawing Shape Group Properties Buffer Overflow (MS10-003) - Ver2 (CVE-2010-0243)
Microsoft Excel is a popular spreadsheet application. A remote code execution vulnerability has been reported in the way Microsoft Office handles specially crafted Excel files. The vulnerability is due to a memory corruption error in Microsoft Office when loading malformed Excel records. A remote...
Microsoft Office Excel Drawing Exception Handling Code Execution (MS10-087; CVE-2010-3335)
Microsoft Excel is a popular spreadsheet application. A remote attacker could exploit this issue via a malformed Excel file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. A memory corruption vulnerability has been identified in Microsoft...