9.3
CVE-2007-2834
- EPSS 11.32%
- Veröffentlicht 18.09.2007 21:17:00
- Zuletzt bearbeitet 16.06.2026 22:40:31
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Integer overflow in the TIFF parser in OpenOffice.org (OOo) before 2.3; and Sun StarOffice 6, 7, and 8 Office Suite (StarSuite); allows remote attackers to execute arbitrary code via a TIFF file with crafted values of unspecified length fields, which triggers allocation of an incorrect amount of memory, resulting in a heap-based buffer overflow.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Apache ≫ Openoffice Version < 2.3.0
Sun ≫ Staroffice Version6.0
Sun ≫ Staroffice Version7.0
Sun ≫ Staroffice Version8.0
Debian ≫ Debian Linux Version3.1
Debian ≫ Debian Linux Version4.0
Canonical ≫ Ubuntu Linux Version6.06
Canonical ≫ Ubuntu Linux Version6.10
Canonical ≫ Ubuntu Linux Version7.04
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 11.32% | 0.954 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 9.3 | 8.6 | 10 |
AV:N/AC:M/Au:N/C:C/I:C/A:C
|
CWE-190 Integer Overflow or Wraparound
The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.
http://bugs.gentoo.org/show_bug.cgi?id=192818
http://fedoranews.org/updates/FEDORA-2007-237.shtml
http://fedoranews.org/updates/FEDORA-2007-700.shtml
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=593
http://lists.opensuse.org/opensuse-security-announce/2007-09/msg00002.html
http://secunia.com/advisories/26816
http://secunia.com/advisories/26817
http://secunia.com/advisories/26839
http://secunia.com/advisories/26844
http://secunia.com/advisories/26855
http://secunia.com/advisories/26861
http://secunia.com/advisories/26891
http://secunia.com/advisories/26903
http://secunia.com/advisories/26912
http://secunia.com/advisories/27077
http://secunia.com/advisories/27087
http://secunia.com/advisories/27370
http://security.gentoo.org/glsa/glsa-200710-24.xml
http://securitytracker.com/id?1018702
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102994-1
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200190-1
http://www.debian.org/security/2007/dsa-1375
http://www.mandriva.com/security/advisories?name=MDKSA-2007:186
http://www.openoffice.org/security/cves/CVE-2007-2834.html
http://www.redhat.com/support/errata/RHSA-2007-0848.html
http://www.securityfocus.com/archive/1/479965/100/0/threaded
http://www.securityfocus.com/bid/25690
http://www.ubuntu.com/usn/usn-524-1
http://www.vupen.com/english/advisories/2007/3184
http://www.vupen.com/english/advisories/2007/3262
https://exchange.xforce.ibmcloud.com/vulnerabilities/36656
https://issues.rpath.com/browse/RPL-1740
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9967