Oracle Outside In Excel Remote Code Execution (CVE-2018-3010)

An out-of-bounds write vulnerability exists in Oracle Outside-In. This vulnerability is due to improper handling of a PropertySetStream stream of an Excel document. Successful exploitation of this vulnerability could lead to arbitrary code execution in the context of the affected application.

You can read the full article here.