Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2008-3282

Опубликовано: 29 авг. 2008
Источник: nvd
CVSS3: 7.8
CVSS2: 9.3
EPSS Низкий

Описание

Integer overflow in the rtl_allocateMemory function in sal/rtl/source/alloc_global.c in the memory allocator in OpenOffice.org (OOo) 2.4.1, on 64-bit platforms, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted document, related to a "numeric truncation error," a different vulnerability than CVE-2008-2152.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:apache:openoffice:2.4.1:*:*:*:*:*:x64:*
Конфигурация 2

Одно из

cpe:2.3:o:fedoraproject:fedora:8:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:9:*:*:*:*:*:*:*

EPSS

Процентиль: 69%
0.00621
Низкий

7.8 High

CVSS3

9.3 Critical

CVSS2

Дефекты

CWE-681
CWE-681

Связанные уязвимости

ubuntu логотип

CVE-2008-3282

CVSS3: 7.8
ubuntu
около 17 лет назад

Integer overflow in the rtl_allocateMemory function in sal/rtl/source/alloc_global.c in the memory allocator in OpenOffice.org (OOo) 2.4.1, on 64-bit platforms, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted document, related to a "numeric truncation error," a different vulnerability than CVE-2008-2152.

redhat логотип

CVE-2008-3282

redhat
около 17 лет назад

Integer overflow in the rtl_allocateMemory function in sal/rtl/source/alloc_global.c in the memory allocator in OpenOffice.org (OOo) 2.4.1, on 64-bit platforms, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted document, related to a "numeric truncation error," a different vulnerability than CVE-2008-2152.

debian логотип

CVE-2008-3282

CVSS3: 7.8
debian
около 17 лет назад

Integer overflow in the rtl_allocateMemory function in sal/rtl/source/ ...

github логотип

GHSA-jvw4-xfqp-q5qh

CVSS3: 7.8
github
больше 3 лет назад

Integer overflow in the rtl_allocateMemory function in sal/rtl/source/alloc_global.c in the memory allocator in OpenOffice.org (OOo) 2.4.1, on 64-bit platforms, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted document, related to a "numeric truncation error," a different vulnerability than CVE-2008-2152.

EPSS

Процентиль: 69%
0.00621
Низкий

7.8 High

CVSS3

9.3 Critical

CVSS2

Дефекты

CWE-681
CWE-681