Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2010-2935

Опубликовано: 26 июл. 2010
Источник: redhat
CVSS2: 6.8

Описание

simpress.bin in the Impress module in OpenOffice.org (OOo) 2.x and 3.x before 3.3 does not properly handle integer values associated with dictionary property items, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PowerPoint document that triggers a heap-based buffer overflow, related to an "integer truncation error."

Отчет

This issue is not planned to be fixed in Red Hat Enterprise Linux 5, as its impact is mitigated by standard glibc protection mechanisms to cause only application abort. Red Hat Security Response Team does not consider a user-assisted crash (abort) of a client application, such as OpenOffice.org Impress tool, to be a security issue.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5openoffice.orgAffected
Red Hat Enterprise Linux 6openoffice.orgAffected
Red Hat Enterprise Linux 3openoffice.orgFixedRHSA-2010:064323.08.2010
Red Hat Enterprise Linux 4openoffice.orgFixedRHSA-2010:064323.08.2010
Red Hat Enterprise Linux 4openoffice.org2FixedRHSA-2010:064323.08.2010

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important
https://bugzilla.redhat.com/show_bug.cgi?id=622529OpenOffice.Org: Integer truncation error by parsing specially-crafted Microsoft PowerPoint document

6.8 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2010-2935

ubuntu
больше 15 лет назад

simpress.bin in the Impress module in OpenOffice.org (OOo) 2.x and 3.x before 3.3 does not properly handle integer values associated with dictionary property items, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PowerPoint document that triggers a heap-based buffer overflow, related to an "integer truncation error."

nvd логотип

CVE-2010-2935

nvd
больше 15 лет назад

simpress.bin in the Impress module in OpenOffice.org (OOo) 2.x and 3.x before 3.3 does not properly handle integer values associated with dictionary property items, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PowerPoint document that triggers a heap-based buffer overflow, related to an "integer truncation error."

debian логотип

CVE-2010-2935

debian
больше 15 лет назад

simpress.bin in the Impress module in OpenOffice.org (OOo) 2.x and 3.x ...

github логотип

GHSA-fhhr-xhww-w2vm

github
больше 3 лет назад

simpress.bin in the Impress module in OpenOffice.org (OOo) 2.x and 3.x before 3.3 does not properly handle integer values associated with dictionary property items, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PowerPoint document that triggers a heap-based buffer overflow, related to an "integer truncation error."

fstec логотип

BDU:2020-02894

CVSS3: 9.9
fstec
больше 15 лет назад

Уязвимость модуля Impress офисного пакета OpenOffice, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании

6.8 Medium

CVSS2