CVE-2017-2919 in libxlsinfo

Summary

An exploitable stack based buffer overflow vulnerability exists in the xls_getfcell function of libxls 1.3.4. A specially crafted XLS file can cause a memory corruption resulting in remote code execution. An attacker can send malicious XLS file to trigger this vulnerability

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Responsible

Talos

Reservation

12/01/2016

Disclosure

11/20/2017

Moderation

VulDB entry created

Entries

VDB-109765 (1)

CPE

ready

CWE

CWE-119 (Confirmed)

CVSS

7.3

EPSS

0.01299

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-2919
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-2919
CVE Details	https://www.cvedetails.com/cve/CVE-2017-2919/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!