Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusTenable5745.PRM
HistoryJan 27, 2011 - 12:00 a.m.

OpenOffice < 3.3 Multiple Vulnerabilities

2011-01-2700:00:00
Tenable
www.tenable.com
112

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.149 Low

EPSS

Percentile

95.9%

JSON

Versions of OpenOffice earlier than 3.3 are potentially affected by several issues :

  • Issues exist relating to PowerPoint document parsing that may lead to arbitrary code execution. (CVE-2010-2935, CVE-2010-2936)

  • A directory traversal vulnerability exists in zip / jar package extraction. (CVE-2010-3450)

  • Issues exist relating to RTF document processing that may lead to arbitrary code execution. (CVE-2010-3451, CVE-2010-3452)

  • Issues exist relating to Word document processing that may lead to arbitrary code execution. (CVE-2010-3453, CVE-2010-3454)

  • The OpenOffice.org start script and other shell scripts expand the LD_LIBRARY_PATH in a way that the current directory might be searched for libraries before /lib and /usr/lib. (CVE-2010-3689)

  • Issues exist in the third party XPDF library relating to PDf processing that may allow arbitrary code execution. (CVE-2010-3702, CVE-2010-3704)

  • OpenOffice.org includes a version of LIBXML2 that is affected by multiple vulnerabilities. (CVE-2010-4008, CVE-2010-4494)

  • An issue exists with PNG file processing that may allow arbitrary code execution. (CVE-2010-4253)

  • An issue exists with TGA file processing that may allow arbitrary code execution. (CVE-2010-4643)

Binary data 5745.prm
VendorProductVersionCPE
sunopenoffice.orgcpe:/a:sun:openoffice.org

References

Related

freebsd 1
nessus 67
openvas 76
ubuntu 2
redhat 8
centos 7
osv 2
debian 8
oraclelinux 8
fedora 6
securityvulns 5
kaspersky 1
altlinux 4
gentoo 2
slackware 2
freebsd
freebsd
openoffice.org -- Multiple vulnerabilities
2010-08-04 00:00:00
nessus
nessus
Oracle OpenOffice.org < 3.3 Multiple Vulnerabilities
2011-01-27 00:00:00
FreeBSD : openoffice.org -- Multiple vulnerabilities (f2b43905-3545-11e0-8e81-0022190034c0)
2011-02-14 00:00:00
openSUSE Security Update : OpenOffice_org (openSUSE-SU-2011:0337-1)
2011-05-05 00:00:00
openvas
openvas
FreeBSD Ports: openoffice.org
2011-03-05 00:00:00
FreeBSD Ports: openoffice.org
2011-03-05 00:00:00
Ubuntu: Security Advisory (USN-1056-1)
2011-02-04 00:00:00
ubuntu
ubuntu
OpenOffice.org vulnerabilities
2011-02-02 00:00:00
poppler vulnerabilities
2010-10-19 00:00:00
redhat
redhat
(RHSA-2011:0183) Important: openoffice.org security and bug fix update
2011-01-28 00:00:00
(RHSA-2011:0182) Important: openoffice.org security update
2011-01-28 00:00:00
(RHSA-2011:0181) Important: openoffice.org and openoffice.org2 security update
2011-01-28 00:00:00
centos
centos
openoffice.org security update
2011-05-07 09:10:56
openoffice.org, openoffice.org2 security update
2011-02-04 10:49:09
openoffice.org, openoffice.org2 security update
2010-08-25 13:52:49
osv
osv
openoffice.org - several vulnerabilities
2011-01-26 00:00:00
xpdf - several vulnerabilities
2010-12-21 00:00:00
debian
debian
[SECURITY] [DSA 2151-1] New OpenOffice.org packages fix several vulnerabilities
2011-01-26 16:18:12
[BSA-020] Security Update for openoffice.org
2011-01-27 20:36:23
Security update for openoffice.org
2010-09-12 19:39:12
oraclelinux
oraclelinux
openoffice.org security and bug fix update
2011-02-10 00:00:00
openoffice.org security update
2011-01-28 00:00:00
kdegraphics security update
2010-10-07 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: openoffice.org-3.2.0-12.35.fc13
2011-02-17 00:50:23
[SECURITY] Fedora 14 Update: xpdf-3.02-16.fc14
2010-11-04 23:29:40
[SECURITY] Fedora 13 Update: xpdf-3.02-16.fc13
2010-11-04 23:32:04
securityvulns
securityvulns
OpenOffice.org Multiple Memory Corruption Vulnerabilities
2011-01-27 00:00:00
[SECURITY] [DSA 2099-1] New OpenOffice.org packages fix arbitrary code execution
2010-08-31 00:00:00
poppler library multiple security vulnerabilities
2010-10-13 00:00:00
kaspersky
kaspersky
KLA10280 DoS vulnerability in OpenOffice.org
2010-08-25 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 5 package poppler5 version 0.12.4-alt0.M51.2
2010-10-14 00:00:00
Security fix for the ALT Linux 5 package kdegraphics version 3.5.10-alt5.M50P.1
2010-10-19 00:00:00
Security fix for the ALT Linux 5 package kdegraphics version 3.5.10-alt6
2010-10-14 00:00:00
gentoo
gentoo
OpenOffice, LibreOffice: Multiple vulnerabilities
2014-08-31 00:00:00
Xpdf: User-assisted execution of arbitrary code
2014-02-17 00:00:00
slackware
slackware
[slackware-security] poppler
2010-11-21 00:21:03
[slackware-security] xpdf
2010-11-21 00:20:46

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.149 Low

EPSS

Percentile

95.9%

JSON
Related for 5745.PRM
freebsd1nessus67openvas76ubuntu2redhat8centos7osv2debian8oraclelinux8fedora6securityvulns5kaspersky1altlinux4gentoo2slackware2