Computer Security
[EN] securityvulns.ru no-pyccku


Apache POI memory exhaustion
Published:14.05.2012
Source:
SecurityVulns ID:12378
Type:library
Threat Level:
5/10
Description:Memory exhaustion on Microsoft Word documents processing.
Affected:APACHE : POI 3.7
CVE:CVE-2012-0213 (The UnhandledDataStructure function in hwpf/model/UnhandledDataStructure.java in Apache POI 3.8 and earlier allows remote attackers to cause a denial of service (OutOfMemoryError exception and possibly JVM destabilization) via a crafted length value in a Channel Definition Format (CDF) or Compound File Binary Format (CFBF) document.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 2468-1] libjakarta-poi-java security update (14.05.2012)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod