Apache

Openoffice

53 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.9

CVE-2010-3689

  • EPSS 0.06%
  • Published 28.01.2011 22:00:05
  • Last modified 11.04.2025 00:51:21

soffice in OpenOffice.org (OOo) 3.x before 3.3 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.

9.3

CVE-2010-4253

  • EPSS 5.18%
  • Published 28.01.2011 22:00:05
  • Last modified 11.04.2025 00:51:21

Heap-based buffer overflow in Impress in OpenOffice.org (OOo) 2.x and 3.x before 3.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file in an ODF or Microsoft Office docu...

9.3

CVE-2010-4643

  • EPSS 3.46%
  • Published 28.01.2011 22:00:05
  • Last modified 11.04.2025 00:51:21

Heap-based buffer overflow in Impress in OpenOffice.org (OOo) 2.x and 3.x before 3.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Truevision TGA (TARGA) file in an ODF or Mi...

7.5

CVE-2010-4494

Exploit
  • EPSS 1.62%
  • Published 07.12.2010 21:00:09
  • Last modified 11.04.2025 00:51:21

Double free vulnerability in libxml2 2.7.8 and other versions, as used in Google Chrome before 8.0.552.215 and other products, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to XPath...

4.3

CVE-2010-4008

Exploit
  • EPSS 0.57%
  • Published 17.11.2010 01:00:02
  • Last modified 11.04.2025 00:51:21

libxml2 before 2.7.8, as used in Google Chrome before 7.0.517.44, Apple Safari 5.0.2 and earlier, and other products, reads from invalid memory locations during processing of malformed XPath expressions, which allows context-dependent attackers to ca...

9.3

CVE-2010-0395

  • EPSS 15.7%
  • Published 10.06.2010 00:30:07
  • Last modified 11.04.2025 00:51:21

OpenOffice.org 2.x and 3.0 before 3.2.1 allows user-assisted remote attackers to bypass Python macro security restrictions and execute arbitrary Python code via a crafted OpenDocument Text (ODT) file that triggers code execution when the macro direct...

9.3

CVE-2010-0136

  • EPSS 4.52%
  • Published 16.02.2010 19:30:00
  • Last modified 11.04.2025 00:51:21

OpenOffice.org (OOo) 2.0.4, 2.4.1, and 3.1.1 does not properly enforce Visual Basic for Applications (VBA) macro security settings, which allows remote attackers to run arbitrary macros via a crafted document.

9.3

CVE-2009-3302

  • EPSS 42.76%
  • Published 16.02.2010 19:30:00
  • Last modified 11.04.2025 00:51:21

filter/ww8/ww8par2.cxx in OpenOffice.org (OOo) before 3.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted sprmTSetBrc table property modifier in a Word document, related to a "...

9.3

CVE-2009-3301

  • EPSS 38.75%
  • Published 16.02.2010 19:30:00
  • Last modified 11.04.2025 00:51:21

Integer underflow in filter/ww8/ww8par2.cxx in OpenOffice.org (OOo) before 3.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted sprmTDefTable table property modifier in a Word d...

9.3

CVE-2009-2950

  • EPSS 22.96%
  • Published 16.02.2010 19:30:00
  • Last modified 11.04.2025 00:51:21

Heap-based buffer overflow in the GIFLZWDecompressor::GIFLZWDecompressor function in filter.vcl/lgif/decode.cxx in OpenOffice.org (OOo) before 3.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary ...