Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:24557
HistoryApr 10, 2020 - 12:57 a.m.

Arbitrary Code Execution

2020-04-1000:57:26
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
22

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

JSON

openoffice.org is vulnerable to arbitrary code execution. The vulnerability exists as a heap-based buffer overflow flaw and an array index error were found in the way OpenOffice.org parsed certain Microsoft Office Word documents. An attacker could use these flaws to create a specially-crafted Microsoft Office Word document that, when opened, would cause OpenOffice.org to crash or, possibly, execute arbitrary code with the privileges of the user running OpenOffice.org.

References

Related

prion 1
ubuntucve 1
cve 1
securityvulns 2
openvas 26
nessus 22
centos 2
oraclelinux 2
redhat 3
osv 1
debian 2
ubuntu 1
fedora 1
freebsd 1
gentoo 1
oracle 1
prion
prion
Out-of-bounds
2011-01-28 22:00:00
ubuntucve
ubuntucve
CVE-2010-3454
2011-01-28 00:00:00
cve
cve
CVE-2010-3454
2011-01-28 22:00:00
securityvulns
securityvulns
OpenOffice.org Multiple Memory Corruption Vulnerabilities
2011-01-27 00:00:00
Oracle / Sun / Peoplesoft / Open Office applications multiple security vulnerabilities
2011-05-04 00:00:00
openvas
openvas
RedHat Update for openoffice.org and openoffice.org2 RHSA-2011:0181-01
2011-01-31 00:00:00
CentOS Update for openoffice.org CESA-2011:0181 centos4 i386
2011-02-11 00:00:00
CentOS Update for openoffice.org CESA-2011:0181 centos4 x86_64
2012-07-30 00:00:00
nessus
nessus
Scientific Linux Security Update : openoffice.org and openoffice.org2 on SL4.x i386/x86_64
2012-08-01 00:00:00
Oracle Linux 6 : openoffice.org (ELSA-2011-0183)
2013-07-12 00:00:00
Scientific Linux Security Update : openoffice.org on SL6.x i386/x86_64
2012-08-01 00:00:00
centos
centos
openoffice.org, openoffice.org2 security update
2011-02-04 10:49:09
openoffice.org security update
2011-05-07 09:10:56
oraclelinux
oraclelinux
openoffice.org security update
2011-01-28 00:00:00
openoffice.org security and bug fix update
2011-02-10 00:00:00
redhat
redhat
(RHSA-2011:0181) Important: openoffice.org and openoffice.org2 security update
2011-01-28 00:00:00
(RHSA-2011:0183) Important: openoffice.org security and bug fix update
2011-01-28 00:00:00
(RHSA-2011:0182) Important: openoffice.org security update
2011-01-28 00:00:00
osv
osv
openoffice.org - several vulnerabilities
2011-01-26 00:00:00
debian
debian
[SECURITY] [DSA 2151-1] New OpenOffice.org packages fix several vulnerabilities
2011-01-26 16:20:00
[BSA-020] Security Update for openoffice.org
2011-01-27 20:36:23
ubuntu
ubuntu
OpenOffice.org vulnerabilities
2011-02-02 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: openoffice.org-3.2.0-12.35.fc13
2011-02-17 00:50:23
freebsd
freebsd
openoffice.org -- Multiple vulnerabilities
2010-08-04 00:00:00
gentoo
gentoo
OpenOffice, LibreOffice: Multiple vulnerabilities
2014-08-31 00:00:00
oracle
oracle
cpuapr2011
2011-04-19 00:00:00

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

JSON
Related for VERACODE:24557
prion1ubuntucve1cve1securityvulns2openvas26nessus22centos2oraclelinux2redhat3osv1debian2ubuntu1fedora1freebsd1gentoo1oracle1