Integer Overflow Vulnerability in libxls 1.4 Allows Remote Code Execution

Integer Overflow Vulnerability in libxls 1.4 Allows Remote Code Execution

CVE-2017-12110 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

An exploitable integer overflow vulnerability exists in the xls_appendSST function of libxls 1.4.A specially crafted XLS file can cause memory corruption resulting in remote code execution.

Learn more about our Web Application Penetration Testing UK.