3 matches found
Antenna House DMC HTMLFilter Memory Corruption (CVE-2017-2799)
A remote code execution vulnerability exists in Marklogic. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
AntennaHouse DMC HTMLFilter AddSst Code Execution Vulnerability(CVE-2017-2799)
Summary An exploitable heap corruption vulnerability exists in the AddSst functionality of AntennaHouse DMC HTMLFilter as used by MarkLogioc 8.0-6. A specially crafted XLS file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide a malicious XLS file to...
CVE-2017-2799
CVE-2017-2799 is a heap corruption vulnerability in Antenna House DMC HTMLFilter AddSst used by MarkLogic 8.0-6. A malformed XLS triggers allocation via v4 and a subsequent memcpy in AddSst, where an incorrect loop condition can cause an unsigned underflow (index vs length) and cause memcpy to co...