Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2009 Greenbone AGOPENVAS:1361412562310800696
HistorySep 08, 2009 - 12:00 a.m.

OpenOffice.org Word Documents Parsing Buffer Overflow Vulnerability - Windows

2009-09-0800:00:00
Copyright (C) 2009 Greenbone AG
plugins.openvas.org
17

6.8 Medium

AI Score

Confidence

High

0.334 Low

EPSS

Percentile

97.1%

JSON

OpenOffice is prone to a buffer overflow vulnerability.

# SPDX-FileCopyrightText: 2009 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.800696");
  script_version("2024-02-15T05:05:39+0000");
  script_tag(name:"last_modification", value:"2024-02-15 05:05:39 +0000 (Thu, 15 Feb 2024)");
  script_tag(name:"creation_date", value:"2009-09-08 18:25:53 +0200 (Tue, 08 Sep 2009)");
  script_tag(name:"cvss_base", value:"9.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_cve_id("CVE-2009-0200", "CVE-2009-0201");
  script_name("OpenOffice.org Word Documents Parsing Buffer Overflow Vulnerability - Windows");
  script_xref(name:"URL", value:"http://secunia.com/secunia_research/2009-27/");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/36200");
  script_xref(name:"URL", value:"http://www.vupen.com/english/advisories/2009/2490");

  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2009 Greenbone AG");
  script_family("Buffer overflow");
  script_dependencies("secpod_openoffice_detect_win.nasl");
  script_mandatory_keys("OpenOffice/Win/Ver");
  script_tag(name:"impact", value:"Successful remote exploitation could result in arbitrary code execution on
  the affected system which leads to application crash and compromise a
  vulnerable system.");
  script_tag(name:"affected", value:"OpenOffice Version prior to 3.1.1 on Windows.");
  script_tag(name:"insight", value:"- An integer underflow error occurs when parsing certain records in a
    Word document table.

  - An heap overflow error occurs when parsing certain records in a Word
    document when opening a malicious Word document.");
  script_tag(name:"solution", value:"Upgrade to OpenOffice Version 3.1.1 or later");
  script_tag(name:"summary", value:"OpenOffice is prone to a buffer overflow vulnerability.");
  script_tag(name:"qod_type", value:"registry");
  script_tag(name:"solution_type", value:"VendorFix");
  exit(0);
}

include("version_func.inc");

openVer = get_kb_item("OpenOffice/Win/Ver");
if(!openVer)
{
  exit(0);
}

if(version_is_less(version:openVer, test_version:"3.1.9420")){
  report = report_fixed_ver(installed_version:openVer, fixed_version:"3.1.9420");
  security_message(port: 0, data: report);
}

Related

nessus 19
oraclelinux 1
openvas 32
redhat 1
debian 4
seebug 1
centos 1
fedora 1
securityvulns 5
osv 1
ubuntu 1
cvelist 2
checkpoint_advisories 2
veracode 2
cve 2
prion 2
ubuntucve 2
gentoo 1
nessus
nessus
CentOS 3 / 4 : openoffice.org (CESA-2009:1426)
2009-09-08 00:00:00
SuSE 10 Security Update : OpenOffice_org (ZYPP Patch Number 6469)
2011-01-27 00:00:00
OpenOffice < 3.1.1 Multiple Buffer Overflows
2009-09-01 00:00:00
oraclelinux
oraclelinux
openoffice.org security update
2009-09-05 00:00:00
openvas
openvas
CentOS Security Advisory CESA-2009:1426 (openoffice.org)
2009-09-09 00:00:00
Fedora Core 10 FEDORA-2009-9256 (openoffice.org)
2009-09-09 00:00:00
RedHat Security Advisory RHSA-2009:1426
2009-09-09 00:00:00
redhat
redhat
(RHSA-2009:1426) Important: openoffice.org security update
2009-09-04 00:00:00
debian
debian
[Backports-security-announce] Security update for openoffice.org
2009-09-05 16:53:12
[Backports-security-announce] Security update for openoffice.org
2009-09-05 16:47:38
[Backports-security-announce] Security update for openoffice.org
2009-09-05 16:47:38
seebug
seebug
OpenOffice Wordζ–‡ζ‘£θ‘¨ζ Όθ§£ζžζ•΄ζ•°ζΊ’ε‡Ίε’Œε †ζΊ’ε‡ΊζΌζ΄ž
2009-09-02 00:00:00
centos
centos
openoffice.org, openoffice.org2 security update
2009-09-04 16:48:04
fedora
fedora
[SECURITY] Fedora 10 Update: openoffice.org-3.0.1-15.6.fc10
2009-09-04 04:00:33
securityvulns
securityvulns
[SECURITY] [DSA 1880-1] New OpenOffice.org packages fix arbitrary code execution
2009-09-07 00:00:00
OpenOffice multiple security vulnerabilities
2009-09-07 00:00:00
Secunia Research: OpenOffice.org Word Document Table Parsing Integer Underflow
2009-09-02 00:00:00
osv
osv
openoffice.org - arbitrary code execution
2009-09-04 00:00:00
ubuntu
ubuntu
OpenOffice.org vulnerabilities
2009-10-01 00:00:00
cvelist
cvelist
CVE-2009-0200
2009-09-02 17:00:00
CVE-2009-0201
2009-09-02 17:00:00
checkpoint_advisories
checkpoint_advisories
OpenOffice Word Document Table Parsing Integer Underflow (CVE-2009-0200)
2010-04-13 00:00:00
OpenOffice Word Document Table Parsing Heap Overflow (CVE-2009-0201)
2010-04-14 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:35:50
Arbitrary Code Execution
2020-04-10 00:35:50
cve
cve
CVE-2009-0200
2009-09-02 17:30:00
CVE-2009-0201
2009-09-02 17:30:00
prion
prion
Heap overflow
2009-09-02 17:30:00
Heap overflow
2009-09-02 17:30:00
ubuntucve
ubuntucve
CVE-2009-0200
2009-09-02 00:00:00
CVE-2009-0201
2009-09-02 00:00:00
gentoo
gentoo
OpenOffice, LibreOffice: Multiple vulnerabilities
2014-08-31 00:00:00

6.8 Medium

AI Score

Confidence

High

0.334 Low

EPSS

Percentile

97.1%

JSON
Related for OPENVAS:1361412562310800696
nessus19oraclelinux1openvas32redhat1debian4seebug1centos1fedora1securityvulns5osv1ubuntu1cvelist2checkpoint_advisories2veracode2cve2prion2ubuntucve2gentoo1