83 matches found
CVE-2017-2793
An exploitable heap corruption vulnerability exists in the UnCompressUnicode functionality of Antenna House DMC HTMLFilter used by MarkLogic 8.0-6. A specially crafted xls file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide malicious XLS file to...
CVE-2017-2797
An exploitable heap overflow vulnerability exists in the ParseEnvironment functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6...
CVE-2017-2794
An exploitable stack-based buffer overflow vulnerability exists in the DHFSummary functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted PPT file can cause a stack corruption resulting in arbitrary code execution. An attacker can send/provide malicious PPT fi...
Stack overflow
An exploitable stack-based buffer overflow vulnerability exists in the DHFSummary functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted PPT file can cause a stack corruption resulting in arbitrary code execution. An attacker can send/provide malicious PPT fi...
CVE-2017-2783
An exploitable heap corruption vulnerability exists in the FillRowFormat functionality of Antenna House DMC HTMLFilter that is shipped with MarkLogic 8.0-6. A specially crafted xls file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide malicious xls...
CVE-2017-2797
An exploitable heap overflow vulnerability exists in the ParseEnvironment functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6...
CVE-2017-2797
CVE-2017-2797 affects AntennaHouse DMC HTMLFilter (ParseEnvironment) as used by MarkLogic 8.0-6. A heap-based buffer overflow occurs due to inconsistent sizing between allocated buffer (textMasterStyleAtom.size) and the subsequent read size (fontEntityAtom.size) in the PPT parsing flow. Specifica...
CVE-2017-2793
An exploitable heap corruption vulnerability exists in the UnCompressUnicode functionality of Antenna House DMC HTMLFilter used by MarkLogic 8.0-6. A specially crafted xls file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide malicious XLS file to...
CVE-2017-2794
Summary of CVE-2017-2794 (connected details present): The vulnerability exists in the DHFSummary function of AntennaHouse DMC HTMLFilter (used by MarkLogic 8.0-6). A specially crafted PPT can trigger a stack-based buffer overflow via an overflowSize value read from Summary Information, then copie...
CVE-2017-2793
CVE-2017-2793 exploits a heap corruption in Antenna House DMC HTMLFilter (used by MarkLogic 8.0-6) via UnCompressUnicode during XLS string handling. The bug stems from a malformed XLUnicodeString with cch = 0xF203 (61955), which far exceeds the documented 32767 limit. InitMem allocates 65538-byte...
CVE-2017-2794
An exploitable stack-based buffer overflow vulnerability exists in the DHFSummary functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted PPT file can cause a stack corruption resulting in arbitrary code execution. An attacker can send/provide malicious PPT fi...
AntennaHouse DMC HTMLFilter AddSst Code Execution Vulnerability
Summary An exploitable heap corruption vulnerability exists in the AddSst functionality of AntennaHouse DMC HTMLFilter as used by MarkLogioc 8.0-6. A specially crafted XLS file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide a malicious XLS file to...
AntennaHouse DMC HTMLFilter DHFSummary Code Execution Vulnerability
Summary An exploitable heap corruption vulnerability exists in the DHFSummary functionality of AntennaHouse DMC HTMLFilter. A specially crafted doc file can cause a heap corruption resulting in arbitrary code execution. An attacker can provide a malicious doc file to trigger this vulnerability...
AntennaHouse DMC HTMLFilter PPT DHFSummary Code Execution Vulnerability
Summary An exploitable stack-based buffer overflow vulnerability exists in the DHFSummary functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted PPT file can cause a stack corruption resulting in arbitrary code execution. An attacker can send/provide maliciou...
AntennaHouse DMC HTMLFilter Txo Code Execution Vulnerability
Summary An exploitable heap corruption vulnerability exists in the Txo functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted xls file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide malicious XLS file to trigge...
AntennaHouse DMC HTMLFilter iBldDirInfo Code Execution Vulnerability
Summary An exploitable heap corruption vulnerability exists in the iBldDirInfo functionality of AntennaHouse DMC HTMLFilter used by MarkLogic 8.0-6. A specially crafted xls file can cause a heap corruption resulting in arbitrary code execution. An attacker can provide a malicious xls file to...
AntennaHouse DMC HTMLFilter PPT ParseEnvironment Code Execution Vulnerability
Summary An exploitable heap overflow vulnerability exists in the ParseEnvironment functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted PPT file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide malicious PPT fil...
AntennaHouse DMC HTMLFilter UnCompressUnicode Code Execution Vulnerability
Summary An exploitable heap corruption vulnerability exists in the UnCompressUnicode functionality of AntennaHouse DMC HTMLFilter used by MarkLogic 8.0-6. A specially crafted xls file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide malicious XLS fil...
AntennaHouse DMC HTMLFilter Doc_SetSummary Code Execution Vulnerability
AntennaHouse DMC HTMLFilter DocSetSummary Code Execution Vulnerability Summary An exploitable heap corruption vulnerability exists in the DocSetSummary functionality of AntennaHouse DMC HTMLFilter. A specially crafted doc file can cause a heap corruption resulting in arbitrary code execution. An...
AntennaHouse DMC HTMLFilter GetIndexArray Code Execution Vulnerability
Summary An exploitable heap corruption vulnerability exists in the GetIndexArray functionality of AntennaHouse DMC HTMLFilter as used by MarkLogioc 8.0-6. A specially crafted XLS file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide a malicious XLS...