Download
| Alert*
|
oval:org.secpod.oval:def:19920
The host is installed with OpenOffice.org before 3.1.1 and is prone to integer underflow vulnerability. A flaw is present in the application, which fails to properly handle crafted records. Successful exploitation allows remote attackers to execute arbitrary code. oval:org.secpod.oval:def:19921 The host is installed with OpenOffice.org before 3.1.1 and is prone to heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle unspecified records. Successful exploitation allows remote attackers to execute arbitrary code. oval:org.secpod.oval:def:37802 The host is installed with Apache OpenOffice before 4.1.3 and is prone to an unquoted Windows search path vulnerability. A flaw is present in the application, which fails to handle execution of unwanted software installed by a Trojan Horse application. Successful exploitation could allow attackers t ... oval:org.secpod.oval:def:37801 The host is installed with Apache OpenOffice before 4.1.3 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a file that impersonates a dynamic-link library. Successful exploitation could allow attackers to execute an arbitrary code ... oval:org.secpod.oval:def:71796 The host is installed with Apache OpenOffice before 4.1.10 and is prone to an untrusted code execution vulnerability. A flaw is present in the application, which fails to handle non-http(s) hyperlinks. Successful exploitation could allow attackers to cause untrusted code execution. oval:org.secpod.oval:def:36708 The host is installed with Apache OpenOffice 4.1.2 or earlier and is prone to an out-of-bounds memory access vulnerability. A flaw is present in the application, which fails to handle crafted MetaActions in an (1) ODP or (2) OTP file. Successful exploitation could allow attackers to crash the servic ... oval:org.secpod.oval:def:42581 The host is installed with Apache OpenOffice before 4.1.4 and is prone to an out-of-bounds write vulnerability. A flaw is present in the application, which fails to handle a crafted document. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:42583 The host is installed with Apache OpenOffice before 4.1.4 and is prone to an out-of-bounds write vulnerability. A flaw is present in the application, which fails to handle a crafted document. Successful exploitation could allow attackers to crash the service or execute arbitrary code. oval:org.secpod.oval:def:42582 The host is installed with Apache OpenOffice before 4.1.4 and is prone to an out-of-bounds write vulnerability. A flaw is present in the application, which fails to handle a crafted document. Successful exploitation could allow attackers to crash the service or execute arbitrary code. oval:org.secpod.oval:def:19926 The host is installed with OpenOffice.org 2.x before 2.4.2 and is prone to heap-based buffer overflow vulnerability. A flaw is present in application, which fails to properly handle a crafted WMF file. Successful exploitation allows remote attackers to cause a denial of service (application crash) o ... oval:org.secpod.oval:def:19927 The host is installed with OpenOffice.org 2.x before 2.4.2 and is prone to multiple integer overflows vulnerabilities. The flaws are present in application, which fails to properly handle a crafted EMF file. Successful exploitation allows remote attackers to cause a denial of service (application cr ... oval:org.secpod.oval:def:19928 The host is installed with OpenOffice.org 2.x before 2.4 and is prone to integer overflow vulnerability. A flaw is present in application, which fails to properly handle a crafted file. Successful exploitation allows remote attackers to execute arbitrary code. oval:org.secpod.oval:def:19929 The host is installed with OpenOffice.org before 2.4 and is prone to heap-based buffer overflow vulnerability. A flaw is present in application, which fails to properly handle a crafted OLE file. Successful exploitation allows remote attackers to cause a denial of service (crash) and possibly execut ... oval:org.secpod.oval:def:20965 The host is installed with Apache OpenOffice.org before 4.1.1 and is prone to arbitrary code execution vulnerability. The flaw is present in the application, which fails to properly handle a crafted Calc spreadsheet. Successful exploitation allows remote attackers to execute arbitrary commands and p ... oval:org.secpod.oval:def:31650 The host is installed with LibreOffice before 4.4.5 or Apache OpenOffice before 4.1.2 and is prone to an integer overflow vulnerability. A flaw is present in the applications, which fail to handle a long DOC file, which triggers a buffer overflow. Successful exploitation could allow attackers to cau ... oval:org.secpod.oval:def:31651 The host is installed with LibreOffice before 4.4.6, 5.x before 5.0.1 or Apache OpenOffice before 4.1.2 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle an index to a non-existent bookmark in a DOC file. Successful exploitation could allo ... oval:org.mitre.oval:def:12053 OpenOffice.org is installed 32 bit. oval:org.secpod.oval:def:31648 The host is installed with LibreOffice before 4.4.5 or Apache OpenOffice before 4.1.2 and is prone to an information disclosure vulnerability. A flaw is present in the applications, which use the stored LinkUpdateMode configuration information in OpenDocument Format files and templates when handling ... oval:org.secpod.oval:def:31649 The host is installed with LibreOffice before 4.4.5 or Apache OpenOffice before 4.1.2 and is prone to an integer underflow vulnerability. A flaw is present in the applications, which fail to handle a crafted PrinterSetup data in an ODF document. Successful exploitation could allow attackers to cause ... oval:org.secpod.oval:def:220 The host is installed with OpenOffice.org 3.x before 3.3 and is prone to security vulnerability. A flaw is present in soffice component of the application, which places a zero-length directory name in the LD_LIBRARY_PATH failing to check the legitimate version. Successful exploitation allows attacke ... oval:org.mitre.oval:def:12063 simpress.bin in the Impress module in OpenOffice.org (OOo) 2.x and 3.x before 3.3 does not properly handle integer values associated with dictionary property items, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PowerPo ... oval:org.secpod.oval:def:218 The host is installed with OpenOffice.org 2.x and 3.x before 3.3 and is prone to denial of service vulnerability. A flaw is present in the WW8DopTypography::ReadFromMem function of oowriter, which fails to handle specially crafted typography information in a crafted .DOC file that triggers an out-of ... oval:org.secpod.oval:def:215 The host is installed with OpenOffice.org 2.x and 3.x before 3.3 and is prone to multiple directory traversal vulnerabilities. The flaws are present in the application, which fails to handle zip/jar package extraction. Successful exploitation may lead to overwriting files when relative file location ... oval:org.secpod.oval:def:217 The host is installed with OpenOffice.org 2.x and 3.x before 3.3 and is prone to use-after-free vulnerability. A flaw is present in oowriter, which fails to handle a specially crafted RTF document that triggers an out-of-bounds memory read. Successful exploitation may allow a remote unprivileged use ... oval:org.secpod.oval:def:26778 The host is installed with LibreOffice before 4.3.7, 4.4.x before 4.4.2 or Apache OpenOffice before 4.1.2 and is prone to an out-of-bounds write vulnerability. A flaw is present in the application, which fails to handle a crafted HWP document. Successful exploitation could allow attackers to crash ... oval:org.secpod.oval:def:216 The host is installed with OpenOffice.org 2.x and 3.x before 3.3 and is prone to use-after-free vulnerability. A flaw is present in oowriter, which fails to properly sanitize user-supplied input. Successful exploitation may allow a remote unprivileged user to execute arbitrary code on the system wit ... oval:org.secpod.oval:def:14956 The host is installed with Apache OpenOffice.org before 4 and is prone to memory corruption vulnerability. The flaw is present in the application, which fails to properly handle invalid PLCF data in a DOC document file. Successful exploitation allows remote attackers to cause a denial of service (me ... oval:org.secpod.oval:def:14957 The host is installed with Apache OpenOffice.org before 4 and is prone to memory corruption vulnerability. The flaw is present in the application, which fails to properly handle a crafted element in an OOXML document file. Successful exploitation allows remote attackers to cause a denial of service ... oval:org.secpod.oval:def:8176 The host is installed with OpenOffice.org 3.3.0 or prior or LibreOffice before 3.4.3 and is prone to denial of service vulnerability. A flaw is present in the applications, which fails to properly a handle crafted DOC file that can trigger an out-of-bounds read. Successful exploitation allows remote ... oval:org.secpod.oval:def:42580 The host is installed with Apache OpenOffice before 4.1.4 and is prone to an arbitrary file disclosure vulnerability. A flaw is present in the application, which fails to handle a crafted document. Successful exploitation could allow attackers to disclose sensitive information. oval:org.secpod.oval:def:20964 The host is installed with Apache OpenOffice.org before 4.1.1 and is prone to arbitrary code execution vulnerability. The flaw is present in the application, which fails to properly handle crafted OLE objects. Successful exploitation might allow remote attackers to embed arbitrary data into document ... oval:org.secpod.oval:def:7157 The host is installed with OpenOffice.org less than or equal to 3.4.0 or LibreOffice before 3.5.5 and is prone to multiple heap based buffer overflow vulnerabilities. The flaws are present in the applications, which fail to handle a crafted Open Document Text (.odt) file with (1) a child tag within ... oval:org.secpod.oval:def:7153 The host is installed with OpenOffice.org (OOo) before 3.4 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a WPD document that causes a negative array index to be used. Successful exploitation could allow attackers to execute arb ... oval:org.secpod.oval:def:7155 The host is installed with OpenOffice.org before 3.3 or LibreOffice before 3.5.3 and is prone to an integer overflow vulnerability. A flaw is present in the applications, which fail to handle a crafted embedded image object. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:7156 The host is installed with OpenOffice.org (OOo) 3.3 or LibreOffice before 3.5.3 and is prone to an integer overflow vulnerability. A flaw is present in the applications, which fails to properly handle the length of an Escher graphics record in a PowerPoint (.ppt) document. Successful exploitation co ... oval:org.secpod.oval:def:221 The host is installed with OpenOffice.org 2.x and 3.x before 3.3 and is prone to heap-based buffer overflow vulnerability. A flaw is present in Impress component of the application, which fails to handle TGA file processing. Successful exploitation allows a remote unprivileged user to execute arbitr ... oval:org.secpod.oval:def:222 The host is installed with OpenOffice.org 2.x and 3.x before 3.3 and is prone to heap-based buffer overflow vulnerability. A flaw is present in Impress component of the OpenOffice.org, which fails to properly sanitize user-supplied input in a specially crafted PNG file resulting in a heap-based buff ... oval:org.secpod.oval:def:219 The host is installed with OpenOffice.org 2.x and 3.x before 3.3 and is prone to denial of service vulnerability. A flaw is present in WW8ListManager::WW8ListManager function of oowriter, which does not properly handle an unspecified number of list levels in user-defined list styles in WW8 data in a ... oval:org.mitre.oval:def:12144 Integer overflow in simpress.bin in the Impress module in OpenOffice.org (OOo) 2.x and 3.x before 3.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted polygons in a PowerPoint document that triggers a heap-based buffer overflow. oval:org.secpod.oval:def:19922 The host is installed with OpenOffice.org before 3.2 and is prone to integer overflow vulnerability. A flaw is present in XPMReader::ReadXPM function in filter.vcl/ixpm/svt_xpmread.cxx, which fails to properly handle a crafted XPM file. Successful exploitation allows remote attackers to execute arbi ... oval:org.secpod.oval:def:19923 The host is installed with OpenOffice.org before 3.2 and is prone to heap-based buffer overflow vulnerability. A flaw is present in the GIFLZWDecompressor::GIFLZWDecompressor function in filter.vcl/lgif/decode.cxx, which fails to properly handle a crafted GIF file. Successful exploitation allows rem ... oval:org.secpod.oval:def:19924 The host is installed with OpenOffice.org before 3.2 and is prone to integer underflow vulnerability. A flaw is present in filter/ww8/ww8par2.cxx, which fails to properly handle a crafted sprmTDefTable table property modifier in a Word document. Successful exploitation allows remote attackers to exe ... oval:org.secpod.oval:def:19925 The host is installed with OpenOffice.org before 3.2 and is prone to boundary error vulnerability. A flaw is present in filter/ww8/ww8par2.cxx, which fails to properly handle a crafted sprmTDefTable table property modifier in a Word document. Successful exploitation allows remote attackers to cause ... oval:org.secpod.oval:def:50569 The host is installed with Apache OpenOffice through 4.1.5 and is prone to an arithmetic overflow vulnerability. A flaw is present in the application, which fails to handle a crafted document. Successful exploitation could allow attackers to cause an arithmetic overflow. oval:org.secpod.oval:def:50610 The host is installed with LibreOffice 6.0 before 6.0.7 or 6.1 before 6.1.3 or Apache OpenOffice through 4.1.6 and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to properly handle a directory traversal flaw. Successful exploitation could allow a ... oval:org.secpod.oval:def:90580 Updates available for OpenOffice.org. oval:org.secpod.oval:def:7154 The host is installed with OpenOffice 3.3 or LibreOffice before 3.4.6 or 3.5.x before 3.5.1 and is prone to an information disclosure vulnerability. A flaw is present in the applications, which fails to handle a crafted XML external entity (XXE) declaration and reference in an RDF document. Successf ... |
