Gnome: >> Gnumeric >> 1.12.1 Security Vulnerabilities
Heap-based buffer overflow in the ms_escher_get_data function in plugins/excel/ms-escher.c in GNOME Office Gnumeric before 1.12.9 allows remote attackers to cause a denial of service (crash) via a crafted xls file with a crafted length value.
CVSS Score
4.3
EPSS Score
0.012
Published
2013-12-19
Untrusted search path vulnerability in the GObject Python interpreter wrapper in Gnumeric allows local users to execute arbitrary code via a Trojan horse Python file in the current working directory, related to a vulnerability in the PySys_SetArgv function (CVE-2008-5983).
CVSS Score
6.9
EPSS Score
0.001
Published
2009-01-28