QlikView < 11.20 SR1 qvw File Format Parser Integer Overflow
High Nessus Plugin ID 65811
SynopsisThe remote Windows host has an application that is affected by a remote integer overflow vulnerability.
DescriptionThe version of QlikView is prior to 11.2 SR1 (11.20.11718). As such, it is affected by an integer overflow vulnerability that exists in the '.qvw' file format parser.
An attacker could exploit this issue by tricking a user into opening a specially crafted file, resulting in arbitrary code execution.
SolutionUpgrade to QlikView 11.20 SR1 (11.20.11718) or later.