CVE-2017-12110

Опубликовано: 20 нояб. 2017

Источник: debian

EPSS Низкий

Описание

An exploitable integer overflow vulnerability exists in the xls_appendSST function of libxls 1.4.A specially crafted XLS file can cause memory corruption resulting in remote code execution.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
r-cran-readxl	fixed	1.0.0-2		package

Примечания

https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0462

EPSS

Процентиль: 71%

0.00658

Низкий

Связанные уязвимости

CVE-2017-12110

CVSS3: 8.8

ubuntu

около 8 лет назад

An exploitable integer overflow vulnerability exists in the xls_appendSST function of libxls 1.4.A specially crafted XLS file can cause memory corruption resulting in remote code execution.

CVE-2017-12110

CVSS3: 8.8

nvd

около 8 лет назад

An exploitable integer overflow vulnerability exists in the xls_appendSST function of libxls 1.4.A specially crafted XLS file can cause memory corruption resulting in remote code execution.

GHSA-49pr-jwfm-r8m6

CVSS3: 7.8

github

больше 3 лет назад

An exploitable integer overflow vulnerability exists in the xls_appendSST function of libxls 1.4.A specially crafted XLS file can cause memory corruption resulting in remote code execution.

EPSS

Процентиль: 71%

0.00658

Низкий