CVE-2020-3986

VMware Workstation 15.x and Horizon Client for Windows 5.x before 5.4.4 contain an out-of-bounds read vulnerability in Cortado ThinPrint component EMF Parser. A malicious actor with normal access to a virtual machine may be able to exploit these issues to create a partial denial-of-service...

CVE-2020-3986

VMware Workstation 15.x and Horizon Client for Windows 5.x before 5.4.4 contain an out-of-bounds read vulnerability in Cortado ThinPrint component EMF Parser. A malicious actor with normal access to a virtual machine may be able to exploit these issues to create a partial denial-of-service...

Out-of-bounds

VMware Workstation 15.x and Horizon Client for Windows 5.x before 5.4.4 contain an out-of-bounds read vulnerability in Cortado ThinPrint component EMF Parser. A malicious actor with normal access to a virtual machine may be able to exploit these issues to create a partial denial-of-service...

CVE-2020-3986

CVE-2020-3986 affects VMware Workstation 15.x and Horizon Client for Windows 5.x (before 5.4.4). The issue is an out-of-bounds read in the Cortado ThinPrint EMF Parser, allowing a user with normal access to a VM to cause partial DoS or memory leakage in the TPView process. Modes of exploitation a...

CVE-2020-3986

VMware Workstation 15.x and Horizon Client for Windows 5.x before 5.4.4 contain an out-of-bounds read vulnerability in Cortado ThinPrint component EMF Parser. A malicious actor with normal access to a virtual machine may be able to exploit these issues to create a partial denial-of-service...

Arbitrary Code Execution

openoffice.org is vulnerable to arbitrary code execution. Multiple integer overflow flaws were found in the Enhanced Windows Metafile EMF parser. An attacker could create a carefully crafted document containing a malicious EMF file that could cause OpenOffice.org to crash, or, possibly, execute...

CVE-2017-3121

CVE-2017-3121 affects Adobe Acrobat/Reader with memory corruption in the Enhanced Metafile Format (EMF) parser. Affected products include Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier. Exploitation could lead to arbitrar...

Oracle Linux 3 / 4 : openoffice.org (ELSA-2008-0939)

From Red Hat Security Advisory 2008:0939 : Updated openoffice.org packages that correct security issues are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. OpenOffice.org is an office...

Oracle Linux 3 / 4 : openoffice.org (ELSA-2008-0176)

From Red Hat Security Advisory 2008:0176 : Updated openoffice.org 1.x packages to correct multiple security issues are now available for Red Hat Enterprise Linux 3 and Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team...

Scientific Linux Security Update : openoffice.org on SL3.x, SL4.x i386/x86_64

A heap overflow flaw was found in the EMF parser. An attacker could create a carefully crafted EMF file that could cause OpenOffice.org to crash or possibly execute arbitrary code if the malicious EMF image was added to a document or if a document containing the malicious EMF file was opened by a...

Scientific Linux Security Update : openoffice.org2 on SL4.5 and 4.6 i386/x86_64

Multiple heap overflows and an integer underflow were found in the Quattro ProR import filter. An attacker could create a carefully crafted Quattro Pro file that could cause OpenOffice.org to crash or possibly execute arbitrary code if the file was opened by a victim. CVE-2007-5745, CVE-2007-5747...

Scientific Linux Security Update : openoffice.org on SL5.x i386/x86_64

Multiple heap overflows and an integer underflow were found in the Quattro ProR import filter. An attacker could create a carefully crafted Quattro Pro file that could cause OpenOffice.org to crash or possibly execute arbitrary code if the file was opened by a victim. CVE-2007-5745, CVE-2007-5747...

Scientific Linux Security Update : openoffice.org on SL3.x, SL4.x, SL5.x i386/x86_64

SureRun Security Team discovered an integer overflow flaw leading to a heap buffer overflow in the Windows Metafile WMF image format parser. An attacker could create a carefully crafted document containing a malicious WMF file that could cause OpenOffice.org to crash, or, possibly, execute...

SuSE 10 Security Update : OpenOffice_org (ZYPP Patch Number 6469)

This update of OpenOffice.org fixes potential buffer overflow in EMF parser code enhwmf.cxx, emfplus.cxx. Additionally Secunia reported an integer underflow CVE-2009-0200 and a buffer overflow CVE-2009-0201 that could be triggered while parsing Word documents. Also provides the maintenance update...

SuSE 11 Security Update : OpenOffice_org (SAT Patch Number 1258)

This update of OpenOffice.org fixes potential buffer overflow in EMF parser code enhwmf.cxx, emfplus.cxx Thanks to Petr Mladek. Additionally Secunia reported an integer underflow CVE-2009-0200 and a buffer overflow CVE-2009-0201 that could be triggered while parsing Word documents. Also provides...

SuSE 11 Security Update : OpenOffice_org (SAT Patch Number 1258)

This update of OpenOffice.org fixes potential buffer overflow in EMF parser code enhwmf.cxx, emfplus.cxx Thanks to Petr Mladek. Additionally Secunia reported an integer underflow CVE-2009-0200 and a buffer overflow CVE-2009-0201 that could be triggered while parsing Word documents. Also provides...

openSUSE Security Update : OpenOffice_org (OpenOffice_org-1187)

This update of OpenOffice.org fixes potential buffer overflow in EMF parser code CVE-2009-2139, CVE-2009-2140 Thanks to Petr Mladek. Additionally Secunia reported an integer underflow CVE-2009-0200 and a buffer overflow CVE-2009-0201 that could be triggered while parsing Word documents...

openSUSE Security Update : OpenOffice_org (OpenOffice_org-288)

This update fixes an integer overflow in the WMF handler CVE-2008-2237 and multiple bugs in the EMF parser CVE-2008-2238. Additionally multiple non-security fixes were added. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

Mandriva Linux Security Advisory : openoffice.org (MDVSA-2008:095)

A vulnerability in HSQLDB before 1.8.0.9 in OpenOffice.org could allow user-assisted remote attackers to execute arbitrary Java code via crafted database documents CVE-2007-4575. A heap overflow was discovered in OpenOffice.org's EMF parser. An attacker could create a carefully crafted EMF file...

CentOS 3 / 5 : openoffice.org (CESA-2008:0939)

Updated openoffice.org packages that correct security issues are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. OpenOffice.org is an office productivity suite that includes desktop...