4 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-38852
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer Overflow vulnerability in libxlsv.1.6.2 allows a remote attacker to execute arbitrary code and cause a denial of service via a crafted XLS file to the...
Fedora 38 : libxls (2024-8b67e47e43)
The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-8b67e47e43 advisory. Security fix for CVE-2023-38852 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...
CVE-2023-38852
CVE-2023-38852 affects libxls (libxlsv.1.6.2) with a buffer overflow in unicode_decode_wcstombs in xlstool.c:266, allowing remote code execution and potential DoS. Fedori distributions have issued security advisories and patches (libxls-1.6.2-14.fc38/14.fc39) addressing this vulnerability; Fedora...
CVE-2023-38852
Buffer Overflow vulnerability in libxlsv.1.6.2 allows a remote attacker to execute arbitrary code and cause a denial of service via a crafted XLS file to the unicodedecodewcstombs function in xlstool.c:266...