21 matches found
EUVD-2018-19167
Malware in sbrugna...
EUVD-2018-19168
Malware in sbrugna...
CVE-2018-7436
An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in a pointer dereference of the parseSST function...
FreeXL heap buffer out-of-bounds read vulnerability (CNVD-2018-05154)
FreeXL is an open source library for extracting valid data from Excel .xls spreadsheets developed by software developer Alessandro Furieri. A heap buffer out-of-bounds read vulnerability exists in the 'parseSST' function in versions of FreeXL prior to 1.0.5. An attacker can exploit this...
CVE-2018-7437
An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in a memcpy call of the parseSST function...
CVE-2018-7436
An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in a pointer dereference of the parseSST function...
CVE-2018-7436
An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in a pointer dereference of the parseSST function...
Heap overflow
An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in a pointer dereference of the parseSST function...
Heap overflow
An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in a memcpy call of the parseSST function...
CVE-2018-7437
An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in a memcpy call of the parseSST function...
CVE-2018-7436
An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in a pointer dereference of the parseSST function...
CVE-2018-7437
An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in a memcpy call of the parseSST function...
CVE-2018-7436
An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in a pointer dereference of the parseSST function...
CVE-2018-7437
CVE-2018-7437 affects FreeXL (library used to read Excel files). The issue is a heap-based buffer over-read in a memcpy call within parse_SST, fixed in FreeXL versions 1.0.5 and later. Impact is potential memory safety violation; exploitation details are not provided in the available documents. R...
CVE-2018-7437
An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in a memcpy call of the parseSST function...
CVE-2018-7436
An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in a pointer dereference of the parseSST function...
CVE-2018-7436
CVE-2018-7436 affects FreeXL prior to 1.0.5 and is caused by a heap-based buffer over-read in the parse_SST function. Impact details in sources indicate vulnerability could lead to partial confidentiality/integrity/availability concerns; CVSS data from NVD shows base scores of 6.8 (2.0) and 8.8 (...
Code injection
The parseSST function in FreeXL before 1.0.0i allows remote attackers to cause a denial of service memory consumption via a crafted shared strings table in a workbook...
CVE-2015-2776
The parseSST function in FreeXL before 1.0.0i allows remote attackers to cause a denial of service memory consumption via a crafted shared strings table in a workbook...
CVE-2015-2776
The parseSST function in FreeXL before 1.0.0i allows remote attackers to cause a denial of service memory consumption via a crafted shared strings table in a workbook...