Computer Security
[EN] securityvulns.ru no-pyccku


OpenOffice security vulnerabilities
updated since 06.08.2012
Published:29.08.2012
Source:
SecurityVulns ID:12497
Type:local
Threat Level:
5/10
Description:Multiple buffer overflows.
Affected:OPENOFFICE : OpenOffice 3.5
CVE:CVE-2012-2665 (Multiple heap-based buffer overflows in the XML manifest encryption tag parsing functionality in OpenOffice.org and LibreOffice before 3.5.5 allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted Open Document Text (.odt) file with (1) a child tag within an incorrect parent tag, (2) duplicate tags, or (3) a Base64 ChecksumAttribute whose length is not evenly divisible by four.)
Original documentdocumentAPACHE, CVE-2012-2665 Manifest-processing errors in Apache OpenOffice 3.4.0 (29.08.2012)
 documentTimo Warns, [PRE-SA-2012-05] Multiple heap-based buffer overflows in LibreOffice / OpenOffice (13.08.2012)
 documentDEBIAN, [SECURITY] [DSA 2520-1] openoffice.org security update (06.08.2012)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod