CVE-2009-3301

 

Published at: - 16-02-2010 08:30

Last modified: - 07-02-2022 06:06

Total changes: - 2

Description

Integer underflow in filter/ww8/ww8par2.cxx in OpenOffice.org (OOo) before 3.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted sprmTDefTable table property modifier in a Word document.

Common Vulnerability Scoring System (CVSS)

AV:N/AC:M/Au:N/C:C/I:C/A:C

 

Verification logic

 

Reference

• https://bugzilla.redhat.com/show_bug.cgi?id=533038
• 1023591-Broken Link, Third Party Advisory, VDB Entry
• RHSA-2010:0101-Broken Link
• ADV-2010-0366-Broken Link
• http://www.openoffice.org/security/cves/CVE-2009-3301-3302.html
• DSA-1995-Third Party Advisory
• 38568-Broken Link
• 38218-Broken Link, Third Party Advisory, VDB Entry
• http://www.openoffice.org/security/bulletin.html
• 38567-Broken Link
• USN-903-1-Third Party Advisory
• 38695-Broken Link
• 38921-Broken Link
• SUSE-SA:2010:017-Third Party Advisory
• ADV-2010-0635-Broken Link
• ADV-2010-2905-Broken Link
• MDVSA-2010:221-Broken Link
• TA10-287A-Third Party Advisory, US Government Resource
• GLSA-201408-19-Third Party Advisory
• 60799-Broken Link
• 41818-Broken Link
• http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html
• openoffice-word-sprmtdeftable-bo(56240)-Third Party Advisory, VDB Entry
• oval:org.mitre.oval:def:10423-Tool Signature

 

Keywords

NVD

 

CVE-2009-3301

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures