11 matches found
Mandriva Linux Security Advisory : gnumeric (MDVSA-2008:056)
A vulnerability was found in the excelreadHLINK function in the Microsoft Excel plugin in Gnumeric prior to version 1.8.1 that would allow for the execution of arbitrary code via a crafted XLS file containing XLS HLINK opcodes. The updated packages have been patched to correct this issues...
Fedora Update for gnumeric FEDORA-2008-1403
Check for the Version of gnumeric OpenVAS Vulnerability Test Fedora Update for gnumeric FEDORA-2008-1403 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Fedora Update for gnumeric FEDORA-2008-1313
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Gentoo Security Advisory GLSA 200802-05 (gnumeric)
The remote host is missing updates announced in advisory GLSA 200802-05. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
openSUSE 10 Security Update : gnumeric (gnumeric-5393)
Specially crafed xls files could trigger integer overflows in gnumeric that could potentially be exploited to execute arbitrary code CVE-2008-0668. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security...
Debian DSA-1546-1 : gnumeric - integer overflow
Thilo Pfennig and Morten Welinder discovered several integer overflow weaknesses in Gnumeric, a GNOME spreadsheet application. These vulnerabilities could result in the execution of arbitrary code through the opening of a maliciously crafted Excel spreadsheet. %NASLMINLEVEL 70300 C Tenable Networ...
[Full-disclosure] [ GLSA 200802-05 ] Gnumeric: User-assisted execution of arbitrary code
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200802-05 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - -...
DEBIAN-CVE-2008-0668
The excelreadHLINK function in plugins/excel/ms-excel-read.c in Gnome Office Gnumeric before 1.8.1 allows user-assisted remote attackers to execute arbitrary code via a crafted XLS file containing XLS HLINK opcodes, possibly because of an integer signedness error that leads to an integer overflow...
CVE-2008-0668
CVE-2008-0668 affects Gnumeric’s Microsoft Excel plugin (excel_read_HLINK) in the gnumeric package prior to version 1.8.1. A crafted XLS file with HLINK opcodes can trigger an integer signedness error that causes an integer overflow, enabling arbitrary code execution by user-assisted remote attac...
Fedora 7 : gnumeric-1.6.3-14.fc7 (2008-1313)
Fix integer overflow and signedness errors in XLS processing Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...
Fedora 8 : gnumeric-1.6.3-14.fc8 (2008-1403)
Fix integer overflow and signedness errors in XLS processing Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...