NuytsTech Security

CVE-2013-6836

by ·

Heap-based buffer overflow in the ms_escher_get_data function in plugins/excel/ms-escher.c in GNOME Office Gnumeric before 1.12.9 allows remote attackers to cause a denial of service (crash) via a crafted xls file with a crafted length value.

Date published : 2013-12-18

http://www.securityfocus.com/bid/64459

https://bugzilla.gnome.org/show_bug.cgi?id=712772

Tags: