Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:23776
HistoryApr 10, 2020 - 12:35 a.m.

Arbitrary Code Execution

2020-04-1000:35:50
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

JSON

openoffice.org is vulnerable to arbitrary code execution. An integer underflow flaw and a boundary error flaw, both possibly leading to a heap-based buffer overflow, were found in the way OpenOffice.org parses certain records in Microsoft Word documents. An attacker could create a specially-crafted Microsoft Word document, which once opened by an unsuspecting user, could cause OpenOffice.org to crash or, potentially, execute arbitrary code with the permissions of the user running OpenOffice.org.

References

Related

checkpoint_advisories 1
cve 1
cvelist 1
securityvulns 4
prion 1
ubuntucve 1
openvas 33
seebug 1
nessus 19
centos 1
oraclelinux 1
redhat 1
debian 4
fedora 1
osv 1
ubuntu 1
gentoo 1
checkpoint_advisories
checkpoint_advisories
OpenOffice Word Document Table Parsing Integer Underflow (CVE-2009-0200)
2010-04-13 00:00:00
cve
cve
CVE-2009-0200
2009-09-02 17:30:00
cvelist
cvelist
CVE-2009-0200
2009-09-02 17:00:00
securityvulns
securityvulns
Secunia Research: OpenOffice.org Word Document Table Parsing Integer Underflow
2009-09-02 00:00:00
Secunia Research: OpenOffice.org Word Document Table Parsing Integer Underflow
2009-09-02 00:00:00
[SECURITY] [DSA 1880-1] New OpenOffice.org packages fix arbitrary code execution
2009-09-07 00:00:00
prion
prion
Heap overflow
2009-09-02 17:30:00
ubuntucve
ubuntucve
CVE-2009-0200
2009-09-02 00:00:00
openvas
openvas
OpenOffice.org Word Documents Parsing Buffer Overflow Vulnerability (Linux)
2009-09-08 00:00:00
OpenOffice.org < 3.1.1 Word Documents Parsing Buffer Overflow Vulnerability - Linux
2009-09-08 00:00:00
CentOS Security Advisory CESA-2009:1426 (openoffice.org)
2009-09-09 00:00:00
seebug
seebug
OpenOffice Wordζ–‡ζ‘£θ‘¨ζ Όθ§£ζžζ•΄ζ•°ζΊ’ε‡Ίε’Œε †ζΊ’ε‡ΊζΌζ΄ž
2009-09-02 00:00:00
nessus
nessus
RHEL 3 / 4 / 5 : openoffice.org (RHSA-2009:1426)
2013-01-24 00:00:00
CentOS 3 / 4 : openoffice.org (CESA-2009:1426)
2009-09-08 00:00:00
SuSE 10 Security Update : OpenOffice_org (ZYPP Patch Number 6469)
2011-01-27 00:00:00
centos
centos
openoffice.org, openoffice.org2 security update
2009-09-04 16:48:04
oraclelinux
oraclelinux
openoffice.org security update
2009-09-05 00:00:00
redhat
redhat
(RHSA-2009:1426) Important: openoffice.org security update
2009-09-04 00:00:00
debian
debian
[Backports-security-announce] Security update for openoffice.org
2009-09-05 16:53:12
[Backports-security-announce] Security update for openoffice.org
2009-09-05 16:47:38
[Backports-security-announce] Security update for openoffice.org
2009-09-05 16:47:38
fedora
fedora
[SECURITY] Fedora 10 Update: openoffice.org-3.0.1-15.6.fc10
2009-09-04 04:00:33
osv
osv
openoffice.org - arbitrary code execution
2009-09-04 00:00:00
ubuntu
ubuntu
OpenOffice.org vulnerabilities
2009-10-01 00:00:00
gentoo
gentoo
OpenOffice, LibreOffice: Multiple vulnerabilities
2014-08-31 00:00:00

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

JSON
Related for VERACODE:23776
checkpoint_advisories1cve1cvelist1securityvulns4prion1ubuntucve1openvas33seebug1nessus19centos1oraclelinux1redhat1debian4fedora1osv1ubuntu1gentoo1