ID CVE-2017-12110
Summary An exploitable integer overflow vulnerability exists in the xls_appendSST function of libxls 1.4.A specially crafted XLS file can cause memory corruption resulting in remote code execution.
References
Vulnerable Configurations
  • cpe:2.3:a:libxls_project:libxls:1.4
    cpe:2.3:a:libxls_project:libxls:1.4
CVSS
Base: 6.8
Impact:
Exploitability:
CWE CWE-190
CAPEC
  • Forced Integer Overflow
    This attack forces an integer variable to go out of range. The integer variable is often used as an offset such as size of memory allocation or similarly. The attacker would typically control the value of such variable and try to get it out of range. For instance the integer in question is incremented past the maximum possible value, it may wrap to become a very small, or negative number, therefore providing a very incorrect value which can lead to unexpected behavior. At worst the attacker can execute arbitrary code.
nessus via4
NASL family Debian Local Security Checks
NASL id DEBIAN_DSA-4173.NASL
description Marcin Noga discovered multiple vulnerabilities in readxl, a GNU R package to read Excel files (via the integrated libxls library), which could result in the execution of arbitrary code if a malformed spreadsheet is processed.
last seen 2019-02-21
modified 2018-11-13
plugin id 109065
published 2018-04-17
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=109065
title Debian DSA-4173-1 : r-cran-readxl - security update
refmap via4
debian DSA-4173
misc https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0462
talos via4
id TALOS-2017-0462
last seen 2018-08-31
published 2017-11-15
reporter Talos Intelligence
source http://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0462
title libxls xls_appendSST Code Execution Vulnerability
Last major update 20-11-2017 - 17:29
Published 20-11-2017 - 17:29
Last modified 17-04-2018 - 21:29
Back to Top