Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
123elf Lotus 1-2-3 before 1.0.0rc3 for Linux, and Lotus 1-2-3 R3 for UNIX and other platforms through 9.8.2, allow attackers to execute arbitrary code via a crafted worksheet. This occurs because of a stack-based buffer overflow in the cell format processing routines, as demonstrated by a certain function call from process_fmt() that can be reached via a w3r_format element in a wk3 document.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
123elf 缓冲区错误漏洞
Vulnerability Description
123elf是Tavis Ormandy个人开发者的一个用于 Linux 的 Lotus 1-2-3。 123elf Lotus 1-2-3 1.0.0rc3之前版本,Lotus 1-2-3 R3 9.8.2及之前版本存在安全漏洞,该漏洞源于允许攻击者通过精心制作的工作表执行任意代码,在单元格格式处理例程中出现了基于栈的缓冲区溢出,正如process_fmt()的某个函数调用所显示的那样,可以通过wk3文档中的w3r_format元素访问。
CVSS Information
N/A
Vulnerability Type
N/A