An exploitable heap corruption vulnerability exists in the GetIndexArray functionality of Antenna House DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted XLS file can cause a heap corruption resulting in arbitrary code execution. An attacker can send or provide a malicious XLS file to trigger this vulnerability.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: talos
Published: 2017-05-24T14:00:00
Updated: 2024-08-05T14:02:07.771Z
Reserved: 2016-12-01T00:00:00
Link: CVE-2017-2798
Vulnrichment
No data.
NVD
Status : Modified
Published: 2017-05-24T14:29:00.193
Modified: 2022-04-19T19:15:21.190
Link: CVE-2017-2798
Redhat
No data.