Buffer overflow in the book_format_sql function in format.c for xlreader 0.9.0 allows remote malicious users to execute arbitrary code via a crafted Excel (XLS) file.
source: wwwsecurityfocuscom/bid/11970/info
A remote, client-side buffer overflow vulnerability affects xlreader This issue is due to a failure of the application to properly validate the length of user-supplied strings prior to copying them into static process buffers
An attacker may exploit this issue to execute arbitrary code with th ...