Lucene search
+L

1059 matches found

veracode
veracode
added 2020/04/10 12:31 a.m.27 views

Arbitrary Code Execution

openoffice.org is vulnerable to arbitrary code execution. A heap overflow flaw in the OpenOffice memory allocator allows an attacker to use the flaw to crash OpenOffice.org or, possibly, execute arbitrary code via a malicious file...

9.3CVSS5.2AI score0.05748EPSS
Exploits1References24Affected Software1
veracode
veracode
added 2020/04/10 12:29 a.m.29 views

Arbitrary Code Execution

openoffice.org is vulnerable to arbitrary code execution. Multiple integer overflow flaws were found in the Enhanced Windows Metafile EMF parser. An attacker could create a carefully crafted document containing a malicious EMF file that could cause OpenOffice.org to crash, or, possibly, execute...

9.3CVSS6.1AI score0.06752EPSS
Exploits1References29Affected Software1
veracode
veracode
added 2020/04/10 12:29 a.m.34 views

Arbitrary Code Execution

openoffice.org is vulnerable to arbitrary code execution. An integer overflow flaw leading to a heap buffer overflow in the Windows Metafile WMF image format parser allows an attacker to create a carefully crafted document containing a malicious WMF file that could cause OpenOffice.org to crash,...

9.3CVSS4.7AI score0.0607EPSS
Exploits1References27Affected Software1
veracode
veracode
added 2020/04/10 12:25 a.m.37 views

Arbitrary Code Execution

openoffice.org is vulnerable to arbitrary code execution. The vulnerability exists as a numeric truncation error was found in the OpenOffice.org memory allocator. If a carefully crafted file was opened by a victim, an attacker could use this flaw to crash OpenOffice.org or, possibly, execute...

7.8CVSS4.1AI score0.10755EPSS
Exploits1References16Affected Software1
nvd
nvd
added 2019/11/27 5:15 p.m.23 views

CVE-2011-2177

OpenOffice.org v3.3 allows execution of arbitrary code with the privileges of the user running the OpenOffice.org suite tools...

7.8CVSS7.9AI score0.01999EPSS
Exploits0References4
ubuntucve
ubuntucve
added 2019/11/27 5:15 p.m.37 views

CVE-2011-2177

OpenOffice.org v3.3 allows execution of arbitrary code with the privileges of the user running the OpenOffice.org suite tools...

7.8CVSS7.4AI score0.01999EPSS
Exploits0References2
prion
prion
added 2019/11/27 5:15 p.m.19 views

Code injection

OpenOffice.org v3.3 allows execution of arbitrary code with the privileges of the user running the OpenOffice.org suite tools...

6.8CVSS7.8AI score0.01999EPSS
Exploits0References4Affected Software1
cvelist
cvelist
added 2019/11/27 4:42 p.m.24 views

CVE-2011-2177

OpenOffice.org v3.3 allows execution of arbitrary code with the privileges of the user running the OpenOffice.org suite tools...

7.9AI score0.01999EPSS
Exploits0References4
cve
cve
added 2019/11/27 4:42 p.m.63 views

CVE-2011-2177

Vulnerability summary (CVE-2011-2177): OpenOffice.org v3.3 is affected. The issue allows execution of arbitrary code with the privileges of the user running the OpenOffice.org suite tools. The connected documents do not provide concrete exploit steps, affected component details beyond the product...

7.8CVSS7.8AI score0.01999EPSS
Exploits0References4Affected Software1
fedora
fedora
added 2019/11/22 12:48 a.m.29 views

[SECURITY] Fedora 31 Update: mingw-hunspell-1.7.0-6.fc31

Hunspell is a spell checker and morphological analyzer library and program designed for languages with rich morphology and complex word compounding or character encoding. Hunspell interfaces: Ispell-like terminal interface usi ng Curses library, Ispell pipe interface, OpenOffice.org UNO module...

6.5CVSS3AI score0.01656EPSS
Exploits1
openvas
openvas
added 2018/01/17 12:0 a.m.11 views

Debian LTS: Security Advisory for openoffice.org-dictionaries (DLA-895-1)

The dictionaries provided by this package had an unversioned conflict against the thunderbird package which so far was not part of wheezy. Since the next update of Icedove introduces a thunderbird package the dictionaries would become unusable in Icedove so the unneeded conflict was dropped. This...

7.2AI score
Exploits0References1
nessus
nessus
added 2017/04/17 12:0 a.m.36 views

Debian DLA-895-1 : openoffice.org-dictionaries update

The dictionaries provided by this package had an unversioned conflict against the thunderbird package which so far was not part of wheezy. Since the next update of Icedove introduces a thunderbird package the dictionaries would become unusable in Icedove so the unneeded conflict was dropped. For...

5.3AI score
Exploits0References2
debian
debian
added 2017/04/14 7:23 p.m.13 views

[SECURITY] [DLA 895-1] openoffice.org-dictionaries update

Package : openoffice.org-dictionaries Version : 3.3.0rc10-4+deb7u1 Debian Bug : 646693 The dictionaries provided by this package had an unversioned conflict against the thunderbird package which so far was not part of wheezy. Since the next update of Icedove introduces a thunderbird package the...

5.7AI score
Exploits0
bdu_fstec
bdu_fstec
added 2016/07/06 12:0 a.m.14 views

The vulnerability of the OpenOffice.org module of the LibreOffice office software package, related to the execution of operations beyond the buffer boundaries in memory, allows an attacker to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the OpenOffice.org module of the LibreOffice office software package is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause...

8.8CVSS5.8AI score0.07006EPSS
Exploits0References6Affected Software2
hackapp
hackapp
added 2016/04/01 8:56 a.m.11 views

OpenOffice.org Tutorial - Dynamic Code Loading, External URLs, SD-card access vulnerabilities

HackApp vulnerability scanner discovered that application OpenOffice.org Tutorial published at the 'play' market has multiple vulnerabilities...

0.6AI score
Exploits0References1Affected Software1
redhatcve
redhatcve
added 2015/10/30 10:23 a.m.19 views

CVE-2006-6628

Integer overflow in OpenOffice.org OOo 2.1 allows user-assisted remote attackers to cause a denial of service application crash via a crafted DOC file, as demonstrated by the 12122006-djtest.doc file, a variant of CVE-2006-6561 in a separate codebase...

9.3CVSS7AI score0.40431EPSS
Exploits2References2
redhatcve
redhatcve
added 2015/10/30 10:16 a.m.25 views

CVE-2009-2139

Heap-based buffer overflow in svtools/source/filter.vcl/wmf/enhwmf.cxx in Go-oo 2.x and 3.x before 3.0.1, previously named ooo-build and related to OpenOffice.org OOo, allows remote attackers to execute arbitrary code via a crafted EMF file, a similar issue to CVE-2008-2238...

9.3CVSS8.8AI score0.06752EPSS
Exploits1References2
redhatcve
redhatcve
added 2015/10/30 10:7 a.m.17 views

CVE-2005-4636

OpenOffice.org 2.0 and earlier, when hyperlinks has been disabled, does not prevent the user from clicking the WWW-browser button in the Hyperlink dialog, which makes it easier for attackers to trick the user into bypassing intended security settings...

4.6CVSS7.2AI score0.00371EPSS
Exploits0References2
redhatcve
redhatcve
added 2015/10/30 9:53 a.m.17 views

CVE-2007-4251

OpenOffice.org OOo 2.2 does not properly handle files with multiple extensions, which allows user-assisted remote attackers to cause a denial of service...

4.3CVSS7AI score0.01246EPSS
Exploits0References3
redhatcve
redhatcve
added 2015/10/30 9:45 a.m.20 views

CVE-2005-4784

Multiple buffer overflows in the POSIX readdirr function, as used in multiple packages, allow local users to cause a denial of service and possibly execute arbitrary code via 1 a symlink attack that exploits a race condition between opendir and pathcon calls and changes the filesystem to one with...

5.6CVSS8.2AI score0.00429EPSS
Exploits0References2
Rows per page
Query Builder