[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Denial of service vulnerability in WW8ListManager::WW8ListManager function in oowriter in OpenOffice.org 2.x and 3.x before 3.3 via crafted .DOC

ID: oval:org.secpod.oval:def:219Date: (C)2011-02-25   (M)2023-02-20
Class: VULNERABILITYFamily: windows




The host is installed with OpenOffice.org 2.x and 3.x before 3.3 and is prone to denial of service vulnerability. A flaw is present in WW8ListManager::WW8ListManager function of oowriter, which does not properly handle an unspecified number of list levels in user-defined list styles in WW8 data in a Microsoft Word document. Successful exploitation may allow a remote unprivileged user to execute arbitrary code on the system with the privileges of a local user running OpenOffice.org.

Platform:
Microsoft Windows 11
Microsoft Windows Server 2022
Microsoft Windows Server 2019
Microsoft Windows Server 2016
Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Vista
Microsoft Windows XP
Microsoft Windows 8
Microsoft Windows Server 2012
Microsoft Windows 8.1
Microsoft Windows 10
Microsoft Windows Server 2012 R2
Product:
OpenOffice.org
Reference:
CVE-2010-3453
CVE    1
CVE-2010-3453
CPE    1
cpe:/a:openoffice:openoffice.org:::x86

© SecPod Technologies