5.1 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.039 Low
EPSS
Percentile
91.9%
AD-LAB reports that a heap-based buffer overflow
vulnerability exists in OpenOffice’s handling of DOC
documents. When reading a DOC document 16 bit from a 32 bit
integer is used for memory allocation, but the full 32 bit
is used for further processing of the document. This can
allow an attacker to crash OpenOffice, or potentially
execute arbitrary code as the user running OpenOffice, by
tricking an user into opening a specially crafted DOC
document.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
FreeBSD | any | noarch | openoffice | <Â 1.1.4_2 | UNKNOWN |
FreeBSD | any | noarch | ar-openoffice | <Â 1.1.4_2 | UNKNOWN |
FreeBSD | any | noarch | ca-openoffice | <Â 1.1.4_2 | UNKNOWN |
FreeBSD | any | noarch | cs-openoffice | <Â 1.1.4_2 | UNKNOWN |
FreeBSD | any | noarch | de-openoffice | <Â 1.1.4_2 | UNKNOWN |
FreeBSD | any | noarch | dk-openoffice | <Â 1.1.4_2 | UNKNOWN |
FreeBSD | any | noarch | el-openoffice | <Â 1.1.4_2 | UNKNOWN |
FreeBSD | any | noarch | es-openoffice | <Â 1.1.4_2 | UNKNOWN |
FreeBSD | any | noarch | et-openoffice | <Â 1.1.4_2 | UNKNOWN |
FreeBSD | any | noarch | fi-openoffice | <Â 1.1.4_2 | UNKNOWN |