CVE-2008-0668

Published: 11 February 2008

The excel_read_HLINK function in plugins/excel/ms-excel-read.c in Gnome Office Gnumeric before 1.8.1 allows user-assisted remote attackers to execute arbitrary code via a crafted XLS file containing XLS HLINK opcodes, possibly because of an integer signedness error that leads to an integer overflow. NOTE: some of these details are obtained from third party information.

Priority

Medium

Status

Package Release Status
gnumeric
Launchpad, Ubuntu, Debian
Upstream Not vulnerable
(1.8.1)
Patches:
Vendor: http://www.mandriva.com/en/security/advisories?name=MDVSA-2008:056