Lucene search
K

83 matches found

OSV
OSV
added 2017/05/23 4:29 p.m.7 views

CVE-2017-2793

An exploitable heap corruption vulnerability exists in the UnCompressUnicode functionality of Antenna House DMC HTMLFilter used by MarkLogic 8.0-6. A specially crafted xls file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide malicious XLS file to...

7.8CVSS6AI score0.01432EPSS
Exploits2References1
OSV
OSV
added 2017/05/23 4:29 p.m.4 views

CVE-2017-2797

An exploitable heap overflow vulnerability exists in the ParseEnvironment functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6...

7.8CVSS5.8AI score0.00917EPSS
Exploits2References1
NVD
NVD
added 2017/05/23 4:29 p.m.27 views

CVE-2017-2794

An exploitable stack-based buffer overflow vulnerability exists in the DHFSummary functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted PPT file can cause a stack corruption resulting in arbitrary code execution. An attacker can send/provide malicious PPT fi...

8.3CVSS8.7AI score0.01299EPSS
Exploits2References1
Prion
Prion
added 2017/05/23 4:29 p.m.13 views

Stack overflow

An exploitable stack-based buffer overflow vulnerability exists in the DHFSummary functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted PPT file can cause a stack corruption resulting in arbitrary code execution. An attacker can send/provide malicious PPT fi...

6.8CVSS8.1AI score0.01299EPSS
Exploits2References1Affected Software1
NVD
NVD
added 2017/05/23 4:29 p.m.14 views

CVE-2017-2783

An exploitable heap corruption vulnerability exists in the FillRowFormat functionality of Antenna House DMC HTMLFilter that is shipped with MarkLogic 8.0-6. A specially crafted xls file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide malicious xls...

8.3CVSS8.6AI score0.01328EPSS
Exploits2References1
Cvelist
Cvelist
added 2017/05/23 4:0 p.m.28 views

CVE-2017-2797

An exploitable heap overflow vulnerability exists in the ParseEnvironment functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6...

8.3CVSS8.5AI score0.00917EPSS
Exploits2References1
CVE
CVE
added 2017/05/23 4:0 p.m.51 views

CVE-2017-2797

CVE-2017-2797 affects AntennaHouse DMC HTMLFilter (ParseEnvironment) as used by MarkLogic 8.0-6. A heap-based buffer overflow occurs due to inconsistent sizing between allocated buffer (textMasterStyleAtom.size) and the subsequent read size (fontEntityAtom.size) in the PPT parsing flow. Specifica...

8.3CVSS7.7AI score0.00917EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2017/05/23 4:0 p.m.30 views

CVE-2017-2793

An exploitable heap corruption vulnerability exists in the UnCompressUnicode functionality of Antenna House DMC HTMLFilter used by MarkLogic 8.0-6. A specially crafted xls file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide malicious XLS file to...

8.3CVSS8.6AI score0.01432EPSS
Exploits2References1
CVE
CVE
added 2017/05/23 4:0 p.m.53 views

CVE-2017-2794

Summary of CVE-2017-2794 (connected details present): The vulnerability exists in the DHFSummary function of AntennaHouse DMC HTMLFilter (used by MarkLogic 8.0-6). A specially crafted PPT can trigger a stack-based buffer overflow via an overflowSize value read from Summary Information, then copie...

8.3CVSS8.1AI score0.01299EPSS
Exploits2References1Affected Software1
CVE
CVE
added 2017/05/23 4:0 p.m.50 views

CVE-2017-2793

CVE-2017-2793 exploits a heap corruption in Antenna House DMC HTMLFilter (used by MarkLogic 8.0-6) via UnCompressUnicode during XLS string handling. The bug stems from a malformed XLUnicodeString with cch = 0xF203 (61955), which far exceeds the documented 32767 limit. InitMem allocates 65538-byte...

8.3CVSS7.9AI score0.01432EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2017/05/23 4:0 p.m.27 views

CVE-2017-2794

An exploitable stack-based buffer overflow vulnerability exists in the DHFSummary functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted PPT file can cause a stack corruption resulting in arbitrary code execution. An attacker can send/provide malicious PPT fi...

8.3CVSS8.7AI score0.01299EPSS
Exploits2References1
Talos
Talos
added 2017/05/04 12:0 a.m.31 views

AntennaHouse DMC HTMLFilter AddSst Code Execution Vulnerability

Summary An exploitable heap corruption vulnerability exists in the AddSst functionality of AntennaHouse DMC HTMLFilter as used by MarkLogioc 8.0-6. A specially crafted XLS file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide a malicious XLS file to...

8.3CVSS8.4AI score0.01328EPSS
Exploits2
Talos
Talos
added 2017/05/04 12:0 a.m.33 views

AntennaHouse DMC HTMLFilter DHFSummary Code Execution Vulnerability

Summary An exploitable heap corruption vulnerability exists in the DHFSummary functionality of AntennaHouse DMC HTMLFilter. A specially crafted doc file can cause a heap corruption resulting in arbitrary code execution. An attacker can provide a malicious doc file to trigger this vulnerability...

8.8CVSS9.2AI score0.01535EPSS
Exploits2
Talos
Talos
added 2017/05/04 12:0 a.m.58 views

AntennaHouse DMC HTMLFilter PPT DHFSummary Code Execution Vulnerability

Summary An exploitable stack-based buffer overflow vulnerability exists in the DHFSummary functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted PPT file can cause a stack corruption resulting in arbitrary code execution. An attacker can send/provide maliciou...

8.3CVSS8.4AI score0.01299EPSS
Exploits2
Talos
Talos
added 2017/05/04 12:0 a.m.29 views

AntennaHouse DMC HTMLFilter Txo Code Execution Vulnerability

Summary An exploitable heap corruption vulnerability exists in the Txo functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted xls file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide malicious XLS file to trigge...

8.6CVSS9AI score0.01335EPSS
Exploits2
Talos
Talos
added 2017/05/04 12:0 a.m.37 views

AntennaHouse DMC HTMLFilter iBldDirInfo Code Execution Vulnerability

Summary An exploitable heap corruption vulnerability exists in the iBldDirInfo functionality of AntennaHouse DMC HTMLFilter used by MarkLogic 8.0-6. A specially crafted xls file can cause a heap corruption resulting in arbitrary code execution. An attacker can provide a malicious xls file to...

9.6CVSS9.4AI score0.01457EPSS
Exploits1
Talos
Talos
added 2017/05/04 12:0 a.m.34 views

AntennaHouse DMC HTMLFilter PPT ParseEnvironment Code Execution Vulnerability

Summary An exploitable heap overflow vulnerability exists in the ParseEnvironment functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted PPT file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide malicious PPT fil...

8.3CVSS8.5AI score0.00917EPSS
Exploits2
Talos
Talos
added 2017/05/04 12:0 a.m.36 views

AntennaHouse DMC HTMLFilter UnCompressUnicode Code Execution Vulnerability

Summary An exploitable heap corruption vulnerability exists in the UnCompressUnicode functionality of AntennaHouse DMC HTMLFilter used by MarkLogic 8.0-6. A specially crafted xls file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide malicious XLS fil...

8.3CVSS8.5AI score0.01432EPSS
Exploits2
Talos
Talos
added 2017/05/04 12:0 a.m.33 views

AntennaHouse DMC HTMLFilter Doc_SetSummary Code Execution Vulnerability

AntennaHouse DMC HTMLFilter DocSetSummary Code Execution Vulnerability Summary An exploitable heap corruption vulnerability exists in the DocSetSummary functionality of AntennaHouse DMC HTMLFilter. A specially crafted doc file can cause a heap corruption resulting in arbitrary code execution. An...

8.8CVSS9.2AI score0.02124EPSS
Exploits2
Talos
Talos
added 2017/05/04 12:0 a.m.39 views

AntennaHouse DMC HTMLFilter GetIndexArray Code Execution Vulnerability

Summary An exploitable heap corruption vulnerability exists in the GetIndexArray functionality of AntennaHouse DMC HTMLFilter as used by MarkLogioc 8.0-6. A specially crafted XLS file can cause a heap corruption resulting in arbitrary code execution. An attacker can send/provide a malicious XLS...

8.3CVSS8.3AI score0.01328EPSS
Exploits2
Rows per page
Query Builder