CVE-2008-0668
CVE-2008-0668
The excel_read_HLINK function in plugins/excel/ms-excel-read.c in Gnome Office Gnumeric before 1.8.1 allows user-assisted remote attackers to execute arbitrary code via a crafted XLS file containing XLS HLINK opcodes, possibly because of an integer signedness error that leads to an integer overflow. NOTE: some of these details are obtained from third party information.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://bugs.gentoo.org/show_bug.cgi?id=208356http://bugzilla.gnome.org/show_bug.cgi?id=505330http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00001.htmlhttp://secunia.com/advisories/28725/http://secunia.com/advisories/28799http://secunia.com/advisories/28948http://secunia.com/advisories/29702http://secunia.com/advisories/29896http://secunia.com/advisories/31339http://security.gentoo.org/glsa/glsa-200802-05.xmlhttps://www.redhat.com/archives/fedora-package-announce/2008-February/msg00114.htmlhttps://www.redhat.com/archives/fedora-package-announce/2008-February/msg00227.html