Lucene search

K
cve[email protected]CVE-2008-2152
HistoryJun 10, 2008 - 6:32 p.m.

CVE-2008-2152

2008-06-1018:32:00
CWE-189
web.nvd.nist.gov
26
cve-2008-2152
integer overflow
rtl_allocatememory
openoffice.org
remote code execution
buffer overflow
nvd

7.5 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.087 Low

EPSS

Percentile

94.4%

Integer overflow in the rtl_allocateMemory function in sal/rtl/source/alloc_global.c in OpenOffice.org (OOo) 2.0 through 2.4 allows remote attackers to execute arbitrary code via a crafted file that triggers a heap-based buffer overflow.

References

7.5 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.087 Low

EPSS

Percentile

94.4%

Related for CVE-2008-2152