Lucene search
K

103 matches found

Check Point Advisories
Check Point Advisories
added 2019/02/24 12:0 a.m.18 views

Microsoft Office Excel Note Record Information Disclosure (CVE-2018-8382)

An information disclosure vulnerability exists in Microsoft Excel. The vulnerability is due to a missing length verification in the parsing of workbook streams. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...

4.3CVSS5.7AI score0.12255EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2017/11/20 12:0 a.m.35 views

Microsoft Office Excel Workbook Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office Excel. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

5.1CVSS2.2AI score0.06167EPSS
Exploits0References1
seebug.org
seebug.org
added 2017/10/13 12:0 a.m.40 views

Hancom Hangul HCell HncChart CFormulaTokenSizeModifier Code Execution Vulnerability(CVE-2016-4295)

Description This vulnerability was discovered within the Hangul Hcell application which is part of the Hangul Office Suite. Hangul Office is published by Hancom, Inc. and is considered one of the more popular Office suites used within South Korea. When opening a Hangul Hcell Document .cell and...

6.8CVSS7.8AI score0.02232EPSS
Exploits2
seebug.org
seebug.org
added 2017/10/13 12:0 a.m.55 views

Hancom Hangul HCell Workbook Table and Pivot Style Code Execution Vulnerability(CVE-2016-4293)

Description This vulnerability was discovered within the Hangul Hcell application which is part of the Hangul Office Suite. Hangul Office is published by Hancom, Inc. and is considered one of the more popular Office suites used within South Korea. When opening a Hangul Hcell Document .cell and...

6.8CVSS8.1AI score0.03617EPSS
Exploits2
Zero Day Initiative
Zero Day Initiative
added 2017/10/11 12:0 a.m.54 views

Microsoft Office Excel xls File Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Microsoft Office Excel. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within t...

2.6CVSS1.3AI score0.0556EPSS
Exploits0References1
OSV
OSV
added 2017/01/06 9:59 p.m.3 views

CVE-2016-4294

When opening a Hangul Hcell Document .cell and processing a property record within the Workbook stream, Hancom Office 2014 will attempt to allocate space for an element using a length from the file. When copying user-supplied data to this buffer, however, the application will use a different size...

7.8CVSS6.1AI score0.02423EPSS
Exploits2References2
ATTACKERKB
ATTACKERKB
added 2017/01/06 9:59 p.m.3 views

CVE-2016-4295

When opening a Hangul Hcell Document .cell and processing a particular record within the Workbook stream, an index miscalculation leading to a heap overlow can be made to occur in Hancom Office 2014. The vulnerability occurs when processing data for a formula used to render a chart via the...

7.8CVSS6.5AI score0.02232EPSS
Exploits2References4
Talos
Talos
added 2016/08/04 12:0 a.m.48 views

Hancom Hangul HCell CSSValFormat::CheckUnderbar Code Execution Vulnerability

Talos Vulnerability Report TALOS-2016-0151 Hancom Hangul HCell CSSValFormat::CheckUnderbar Code Execution Vulnerability August 4, 2016 CVE Number CVE-2016-4296 Description This vulnerability was discovered within the Hangul Hcell application which is part of the Hangul Office Suite. Hangul Office...

7.8CVSS7.8AI score0.02232EPSS
Exploits2
Talos
Talos
added 2016/08/04 12:0 a.m.41 views

Hancom Hangul HCell Workbook Table and Pivot Style Code Execution Vulnerability

Talos Vulnerability Report TALOS-2016-0148 Hancom Hangul HCell Workbook Table and Pivot Style Code Execution Vulnerability August 4, 2016 CVE Number CVE-2016-4293 Description This vulnerability was discovered within the Hangul Hcell application which is part of the Hangul Office Suite. Hangul...

7.8CVSS7.8AI score0.03617EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2016/06/26 12:0 a.m.38 views

FreeXL: Multiple vulnerabilities

Background FreeXL is an open source library to extract valid data from within an Excel .xls spreadsheet. Description FreeXL’s shared strings and workbook functions are vulnerable to the remote execution of arbitrary code and Denial of Service. This can be achieved through specially crafted...

6.8CVSS7.4AI score0.0334EPSS
Exploits0
CNVD
CNVD
added 2015/04/01 12:0 a.m.5 views

FreeXL Denial of Service Vulnerability (CNVD-2015-02146)

FreeXL is an open source library for extracting valid data from Excel .xls spreadsheets developed by software developer Alessandro Furieri. A security vulnerability exists in the 'parseSST' function in FreeXL versions prior to 1.0.0i. The vulnerability can be exploited by a remote attacker to cau...

4.3CVSS6.8AI score0.02358EPSS
Exploits0References1
OSV
OSV
added 2015/03/31 2:59 p.m.1 views

DEBIAN-CVE-2015-2776

The parseSST function in FreeXL before 1.0.0i allows remote attackers to cause a denial of service memory consumption via a crafted shared strings table in a workbook...

4.3CVSS6.7AI score0.02358EPSS
Exploits0References1
NVD
NVD
added 2015/03/31 2:59 p.m.19 views

CVE-2015-2776

The parseSST function in FreeXL before 1.0.0i allows remote attackers to cause a denial of service memory consumption via a crafted shared strings table in a workbook...

4.3CVSS6.2AI score0.02358EPSS
Exploits0References7
OSV
OSV
added 2015/03/31 2:59 p.m.2 views

DEBIAN-CVE-2015-2754

FreeXL before 1.0.0i allows remote attackers to cause a denial of service stack corruption and possibly execute arbitrary code via a crafted workbook, related to a "premature EOF."...

6.8CVSS7.8AI score0.0334EPSS
Exploits0References1
NVD
NVD
added 2015/03/31 2:59 p.m.22 views

CVE-2015-2754

FreeXL before 1.0.0i allows remote attackers to cause a denial of service stack corruption and possibly execute arbitrary code via a crafted workbook, related to a "premature EOF."...

6.8CVSS7.5AI score0.0334EPSS
Exploits0References6
OSV
OSV
added 2015/03/31 2:59 p.m.1 views

DEBIAN-CVE-2015-2753

FreeXL before 1.0.0i allows remote attackers to cause a denial of service stack corruption or possibly execute arbitrary code via a crafted sector in a workbook...

6.8CVSS8AI score0.0334EPSS
Exploits0References1
Prion
Prion
added 2015/03/31 2:59 p.m.16 views

Code injection

The parseSST function in FreeXL before 1.0.0i allows remote attackers to cause a denial of service memory consumption via a crafted shared strings table in a workbook...

4.3CVSS6.8AI score0.02358EPSS
Exploits0References7Affected Software2
Prion
Prion
added 2015/03/31 2:59 p.m.13 views

Design/Logic Flaw

FreeXL before 1.0.0i allows remote attackers to cause a denial of service stack corruption or possibly execute arbitrary code via a crafted sector in a workbook...

6.8CVSS8.3AI score0.0334EPSS
Exploits0References6Affected Software2
UbuntuCve
UbuntuCve
added 2015/03/31 2:59 p.m.22 views

CVE-2015-2754

FreeXL before 1.0.0i allows remote attackers to cause a denial of service stack corruption and possibly execute arbitrary code via a crafted workbook, related to a "premature EOF."...

6.8CVSS6.2AI score0.0334EPSS
Exploits0References2
OSV
OSV
added 2015/03/31 2:59 p.m.3 views

UBUNTU-CVE-2015-2753

FreeXL before 1.0.0i allows remote attackers to cause a denial of service stack corruption or possibly execute arbitrary code via a crafted sector in a workbook...

6.8CVSS6.2AI score0.0334EPSS
Exploits0References3
Rows per page
Query Builder