33 matches found
CVE-2012-2334
Integer overflow in filter/source/msfilter/msdffimp.cxx in OpenOffice.org OOo 3.3, 3.4 Beta, and possibly earlier, and LibreOffice before 3.5.3, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via the length of an Escher graphics record in a PowerPoi...
CVE-2012-2334
Integer overflow in filter/source/msfilter/msdffimp.cxx in OpenOffice.org OOo 3.3, 3.4 Beta, and possibly earlier, and LibreOffice before 3.5.3, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via the length of an Escher graphics record in a PowerPoi...
CVE-2010-2936
Integer overflow in simpress.bin in the Impress module in OpenOffice.org OOo 2.x and 3.x before 3.3 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via crafted polygons in a PowerPoint document that triggers a heap-based buffer overflow...
Integer overflow
Integer overflow in simpress.bin in the Impress module in OpenOffice.org OOo 2.x and 3.x before 3.3 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via crafted polygons in a PowerPoint document that triggers a heap-based buffer overflow...
Heap overflow
simpress.bin in the Impress module in OpenOffice.org OOo 2.x and 3.x before 3.3 does not properly handle integer values associated with dictionary property items, which allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PowerPoi...
CVE-2010-2936
OpenOffice.org Impress (OOo 2.x–3.x up to 3.3) is affected by CVE-2010-2936 due to an integer truncation/heap-based buffer overflow when processing polygons in PowerPoint-like inputs. An attacker could craft a PPT document to trigger a crash or potentially execute code remotely. Public disclosure...
CVE-2010-2936
Integer overflow in simpress.bin in the Impress module in OpenOffice.org OOo 2.x and 3.x before 3.3 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via crafted polygons in a PowerPoint document that triggers a heap-based buffer overflow...
CVE-2010-2935
simpress.bin in the Impress module in OpenOffice.org OOo 2.x and 3.x before 3.3 does not properly handle integer values associated with dictionary property items, which allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PowerPoi...
OpenOffice.org: Heap-based buffer overflow by parsing specially-crafted Microsoft PowerPoint document
Integer overflow in simpress.bin in the Impress module in OpenOffice.org OOo 2.x and 3.x before 3.3 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via crafted polygons in a PowerPoint document that triggers a heap-based buffer overflow...
CVE-2010-0029
Buffer overflow in Microsoft Office PowerPoint 2002 SP3 allows remote attackers to execute arbitrary code via a crafted PowerPoint document, aka "PowerPoint File Path Handling Buffer Overflow Vulnerability."...
Buffer overflow
Buffer overflow in Microsoft Office PowerPoint 2002 SP3 allows remote attackers to execute arbitrary code via a crafted PowerPoint document, aka "PowerPoint File Path Handling Buffer Overflow Vulnerability."...
Design/Logic Flaw
Use-after-free vulnerability in Microsoft Office PowerPoint 2002 SP3 and 2003 SP3 allows remote attackers to execute arbitrary code via a crafted PowerPoint document, aka "OEPlaceholderAtom Use After Free Vulnerability."...
CVE-2010-0029
CVE-2010-0029 is a remote-code-execution vulnerability in Microsoft Office PowerPoint 2002 SP3 caused by a buffer/stack overflow when parsing crafted PowerPoint files (PowerPoint File Path Handling Buffer Overflow). The connected reports confirm this is part of a family of PowerPoint vulnerabilit...