Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Buffer overflow in xlssr.dll in the Autonomy KeyView XLS viewer (aka File Viewer for Excel), as used in IBM Lotus Notes 5.x through 8.5.x, Symantec Mail Security, Symantec BrightMail Appliance, Symantec Data Loss Prevention (DLP), and other products, allows remote attackers to execute arbitrary code via a crafted .xls spreadsheet attachment.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Autonomy KeyView软件包XSL文件 远程缓冲区溢出漏洞
Vulnerability Description
KeyView是用于导出、转换和查看各种格式文件的软件包。 KeyView软件包没有正确地解析Excel文件中的共享字符串表(SST)记录。这个记录用于容纳文档中所使用字符串的表格,其中的一个字段是表示表格中字符串数量的32位整数,在计算中使用这个值控制为动态堆缓冲区所分配的字节数。由于不充分的过滤,在计算中可能导致整数溢出,最终导致堆溢出。 攻击者可以诱骗用户通过使用KeyView软件包的应用程序来处理特制的Excel文档来触发这个漏洞,导致以应用程序的权限执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A