24 matches found
Linux Distros Unpatched Vulnerability : CVE-2010-2935
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - simpress.bin in the Impress module in OpenOffice.org OOo 2.x and 3.x before 3.3 does not properly handle integer values associated with dictionary property item...
openSUSE Security Update : OpenOffice_org-draw (openSUSE-SU-2010:0732-1)
Specially crafted ppt files could cause a heap based buffer overflow in OpenOfficeorg Impress. Attackers could exploit that to crash OpenOfficeorg or potentially even execute arbitrary code CVE-2010-2935, CVE-2010-2936. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...
Scientific Linux Security Update : openoffice.org2 on SL4.x i386/x86_64
An integer truncation error, leading to a heap-based buffer overflow, was found in the way the OpenOffice.org Impress presentation application sanitized a file's dictionary property items. An attacker could use this flaw to create a specially crafted Microsoft Office PowerPoint file that, when...
Scientific Linux Security Update : openoffice.org on SL3.x i386/x86_64
An integer truncation error, leading to a heap-based buffer overflow, was found in the way the OpenOffice.org Impress presentation application sanitized a file's dictionary property items. An attacker could use this flaw to create a specially crafted Microsoft Office PowerPoint file that, when...
Scientific Linux Security Update : openoffice.org on SL4.x i386/x86_64
An integer truncation error, leading to a heap-based buffer overflow, was found in the way the OpenOffice.org Impress presentation application sanitized a file's dictionary property items. An attacker could use this flaw to create a specially crafted Microsoft Office PowerPoint file that, when...
FreeBSD Ports: openoffice.org
The remote host is missing an update to the system as announced in the referenced advisory. VID f2b43905-3545-11e0-8e81-0022190034c0 OpenVAS Vulnerability Test $ Description: Auto generated from VID f2b43905-3545-11e0-8e81-0022190034c0 Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...
Fedora Update for openoffice.org FEDORA-2011-0837
Check for the Version of openoffice.org OpenVAS Vulnerability Test Fedora Update for openoffice.org FEDORA-2011-0837 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify i...
Fedora 13 : openoffice.org-3.2.0-12.35.fc13 (2011-0837)
Thu Jan 27 2011 Caolan McNamara - 1:3.2.0-12.35 - CVE-2010-3450 Extensions and filter package files - CVE-2010-3451 / CVE-2010-3452 RTF documents - CVE-2010-3453 / CVE-2010-3454 Word documents - CVE-2010-3689 LDLIBRARYPATH usage - CVE-2010-4253 PNG graphics - CVE-2010-4643 TGA graphics -...
SuSE 10 Security Update : OpenOffice_org (ZYPP Patch Number 7148)
Specially crafted ppt files could cause a heap-based buffer overflow in OpenOfficeorg Impress. Attackers could exploit that to crash OpenOfficeorg or potentially even execute arbitrary code. CVE-2010-2935 / CVE-2010-2936 This update also fixes numerous non-security bugs. Please refer to the packa...
openSUSE Security Update : OpenOffice_org-draw (openSUSE-SU-2010:0732-1)
Specially crafted ppt files could cause a heap based buffer overflow in OpenOfficeorg Impress. Attackers could exploit that to crash OpenOfficeorg or potentially even execute arbitrary code CVE-2010-2935, CVE-2010-2936. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...
openSUSE Security Update : OpenOffice_org-draw (openSUSE-SU-2010:0732-1)
Specially crafted ppt files could cause a heap based buffer overflow in OpenOfficeorg Impress. Attackers could exploit that to crash OpenOfficeorg or potentially even execute arbitrary code CVE-2010-2935, CVE-2010-2936. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...
Security update for openoffice.org
Rene Engelhard uploaded new packages for openoffice.org which fixed the following security problems: CVE-2010-2935 CVE-2010-2936: Charlie Miller has discovered two vulnerabilities in OpenOffice.org Impress, which can be exploited by malicious people to compromise a users system and execute...
Security update for openoffice.org
Rene Engelhard uploaded new packages for openoffice.org which fixed the following security problems: CVE-2010-2935 CVE-2010-2936: Charlie Miller has discovered two vulnerabilities in OpenOffice.org Impress, which can be exploited by malicious people to compromise a users system and execute...
Debian DSA-2099-1 : openoffice.org - buffer overflows
Charlie Miller has discovered two vulnerabilities in OpenOffice.org Impress, which can be exploited by malicious people to compromise a user's system and execute arbitrary code. - An integer truncation error when parsing certain content can be exploited to cause a heap-based buffer overflow via a...
[SECURITY] [DSA 2099-1] New OpenOffice.org packages fix arbitrary code execution
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 2099-1 [email protected] http://www.debian.org/security/ Martin Schulze August, 30th, 2010 http://www.debian.org/security/faq -...
[SECURITY] [DSA 2099-1] New OpenOffice.org packages fix arbitrary code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 2099-1 [email protected] http://www.debian.org/security/ Martin Schulze August, 30th, 2010 http://www.debian.org/security/faq -...
CentOS Update for openoffice.org CESA-2010:0643 centos4 i386
Check for the Version of openoffice.org OpenVAS Vulnerability Test CentOS Update for openoffice.org CESA-2010:0643 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/...
CentOS Update for openoffice.org CESA-2010:0643 centos3 i386
Check for the Version of openoffice.org OpenVAS Vulnerability Test CentOS Update for openoffice.org CESA-2010:0643 centos3 i386 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/...
CentOS 3 / 4 : openoffice.org (CESA-2010:0643)
Updated openoffice.org packages that fix two security issues are now available for Red Hat Enterprise Linux 3 and 4. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...
CVE-2010-2935
CVE-2010-2935 and CVE-2010-2936 affect OpenOffice.org Impress (simpress.bin) on OpenOffice.org 2.x/3.x up to 3.3. The issues arise from integer truncation and related heap-based buffer overflow when processing dictionary properties and polygons in PowerPoint documents, enabling denial of service ...