Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2010-3450
HistoryJan 28, 2011 - 10:00 p.m.

CVE-2010-3450

2011-01-2822:00:05
CWE-22
[email protected]
web.nvd.nist.gov
88
cve
2010
3450
directory traversal
vulnerabilities
openoffice.org
remote attackers
arbitrary files
xslt jar filter
extension
oxt
jar
zip

6.5 Medium

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.006 Low

EPSS

Percentile

78.1%

JSON

Multiple directory traversal vulnerabilities in OpenOffice.org (OOo) 2.x and 3.x before 3.3 allow remote attackers to overwrite arbitrary files via a … (dot dot) in an entry in (1) an XSLT JAR filter description file, (2) an Extension (aka OXT) file, or unspecified other (3) JAR or (4) ZIP files.

Affected configurations

NVD
Node
apacheopenofficeRange2.0.03.3.0
Node
canonicalubuntu_linuxMatch8.04
OR
canonicalubuntu_linuxMatch9.10
OR
canonicalubuntu_linuxMatch10.04
OR
canonicalubuntu_linuxMatch10.10
OR
debiandebian_linuxMatch5.0
OR
debiandebian_linuxMatch6.0

References

Related

veracode 1
ubuntucve 1
prion 1
cvelist 1
nvd 1
oraclelinux 2
openvas 26
centos 2
nessus 22
redhat 3
osv 1
debian 2
ubuntu 1
fedora 1
freebsd 1
gentoo 1
securityvulns 1
oracle 1
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:57:24
ubuntucve
ubuntucve
CVE-2010-3450
2011-01-28 00:00:00
prion
prion
Directory traversal
2011-01-28 22:00:00
cvelist
cvelist
CVE-2010-3450
2011-01-28 21:13:00
nvd
nvd
CVE-2010-3450
2011-01-28 22:00:05
oraclelinux
oraclelinux
openoffice.org security update
2011-01-28 00:00:00
openoffice.org security and bug fix update
2011-02-10 00:00:00
openvas
openvas
CentOS Update for openoffice.org CESA-2011:0181 centos4 x86_64
2012-07-30 00:00:00
CentOS Update for openoffice.org CESA-2011:0181 centos4 x86_64
2012-07-30 00:00:00
RedHat Update for openoffice.org and openoffice.org2 RHSA-2011:0181-01
2011-01-31 00:00:00
centos
centos
openoffice.org, openoffice.org2 security update
2011-02-04 10:49:09
openoffice.org security update
2011-05-07 09:10:56
nessus
nessus
Scientific Linux Security Update : openoffice.org and openoffice.org2 on SL4.x i386/x86_64
2012-08-01 00:00:00
RHEL 5 : openoffice.org (RHSA-2011:0182)
2011-01-31 00:00:00
Debian DSA-2151-1 : openoffice.org - several vulnerabilities
2011-01-27 00:00:00
redhat
redhat
(RHSA-2011:0181) Important: openoffice.org and openoffice.org2 security update
2011-01-28 00:00:00
(RHSA-2011:0182) Important: openoffice.org security update
2011-01-28 00:00:00
(RHSA-2011:0183) Important: openoffice.org security and bug fix update
2011-01-28 00:00:00
osv
osv
openoffice.org - several vulnerabilities
2011-01-26 00:00:00
debian
debian
[SECURITY] [DSA 2151-1] New OpenOffice.org packages fix several vulnerabilities
2011-01-26 16:20:00
[BSA-020] Security Update for openoffice.org
2011-01-27 20:36:23
ubuntu
ubuntu
OpenOffice.org vulnerabilities
2011-02-02 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: openoffice.org-3.2.0-12.35.fc13
2011-02-17 00:50:23
freebsd
freebsd
openoffice.org -- Multiple vulnerabilities
2010-08-04 00:00:00
gentoo
gentoo
OpenOffice, LibreOffice: Multiple vulnerabilities
2014-08-31 00:00:00
securityvulns
securityvulns
Oracle / Sun / Peoplesoft / Open Office applications multiple security vulnerabilities
2011-05-04 00:00:00
oracle
oracle
cpuapr2011
2011-04-19 00:00:00

6.5 Medium

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.006 Low

EPSS

Percentile

78.1%

JSON
Related for CVE-2010-3450
veracode1ubuntucve1prion1cvelist1nvd1oraclelinux2openvas26centos2nessus22redhat3osv1debian2ubuntu1fedora1freebsd1gentoo1securityvulns1oracle1