Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2010-3453

Опубликовано: 28 янв. 2011
Источник: nvd
CVSS2: 9.3
EPSS Низкий

Описание

The WW8ListManager::WW8ListManager function in oowriter in OpenOffice.org (OOo) 2.x and 3.x before 3.3 does not properly handle an unspecified number of list levels in user-defined list styles in WW8 data in a Microsoft Word document, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted .DOC file that triggers an out-of-bounds write.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:apache:openoffice:*:*:*:*:*:*:*:*
Версия от 2.0.0 (включая) до 3.3.0 (исключая)
Конфигурация 2

Одно из

cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*

EPSS

Процентиль: 90%
0.06034
Низкий

9.3 Critical

CVSS2

Дефекты

CWE-787

Связанные уязвимости

ubuntu логотип

CVE-2010-3453

ubuntu
больше 14 лет назад

The WW8ListManager::WW8ListManager function in oowriter in OpenOffice.org (OOo) 2.x and 3.x before 3.3 does not properly handle an unspecified number of list levels in user-defined list styles in WW8 data in a Microsoft Word document, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted .DOC file that triggers an out-of-bounds write.

redhat логотип

CVE-2010-3453

redhat
больше 14 лет назад

The WW8ListManager::WW8ListManager function in oowriter in OpenOffice.org (OOo) 2.x and 3.x before 3.3 does not properly handle an unspecified number of list levels in user-defined list styles in WW8 data in a Microsoft Word document, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted .DOC file that triggers an out-of-bounds write.

debian логотип

CVE-2010-3453

debian
больше 14 лет назад

The WW8ListManager::WW8ListManager function in oowriter in OpenOffice. ...

github логотип

GHSA-wmv5-vqx6-3hcq

github
около 3 лет назад

The WW8ListManager::WW8ListManager function in oowriter in OpenOffice.org (OOo) 2.x and 3.x before 3.3 does not properly handle an unspecified number of list levels in user-defined list styles in WW8 data in a Microsoft Word document, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted .DOC file that triggers an out-of-bounds write.

fstec логотип

BDU:2020-02899

CVSS3: 9.9
fstec
больше 14 лет назад

Уязвимость функции WW8ListManager офисного пакета OpenOffice, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании

EPSS

Процентиль: 90%
0.06034
Низкий

9.3 Critical

CVSS2

Дефекты

CWE-787