Lucene search
Veracode Vulnerability DatabaseVERACODE:5056HistorySep 12, 2017 - 5:17 a.m.
Remote Code Execution (RCE) Through Heap-based Buffer Overflow
2017-09-1205:17:11
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
0.021 Low
EPSS
Percentile
89.2%
freexl is vulnerable to remote code execution (RCE) Through heap based buffer overflow. The library does not check the content and dimension of the XLS files input to the read_biff_next_record() function, allowing the vulnerability to be triggered when a malicious XLS file is passed to the application.
Related
ubuntucve
ubuntucve
CVE-2017-2923
2018-04-24 00:00:00
talos
talos
FreeXL read_biff_next_record Code Execution Vulnerability
2017-09-11 00:00:00
prion
prion
Heap overflow
2018-04-24 19:29:00
nvd
nvd
CVE-2017-2923
2018-04-24 19:29:03
cve
cve
CVE-2017-2923
2018-04-24 19:29:03
cvelist
cvelist
CVE-2017-2923
2017-09-11 00:00:00
seebug
seebug
FreeXL read_biff_next_record Code Execution Vulnerability(CVE-2017-2923)
2017-09-12 00:00:00
debiancve
debiancve
CVE-2017-2923
2018-04-24 19:29:03
talosblog
talosblog
nessus
nessus
FreeBSD : Multiple exploitable heap-based buffer overflow vulnerabilities exists in FreeXL 1.0.3 (555cd806-b031-11e7-a369-14dae9d59f67)
2017-10-16 00:00:00
Debian DSA-3976-1 : freexl - security update
2017-09-18 00:00:00
Debian DLA-1098-1 : freexl security update
2017-09-18 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-1098-1)
2018-02-06 00:00:00
Debian: Security Advisory (DSA-3976-1)
2017-09-16 00:00:00
debian
debian
[SECURITY] [DSA 3976-1] freexl security update
2017-09-17 17:12:29
[SECURITY] [DLA 1098-1] freexl security update
2017-09-17 16:14:08
[SECURITY] [DSA 3976-1] freexl security update
2017-09-17 17:12:29
freebsd
freebsd
osv
osv
freexl - security update
2017-09-17 00:00:00
freexl - security update
2017-09-17 00:00:00