CVE-2010-3451

 

Published at: - 28-01-2011 11:00

Last modified: - 07-02-2022 06:00

Total changes: - 3

Description

Use-after-free vulnerability in oowriter in OpenOffice.org (OOo) 2.x and 3.x before 3.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via malformed tables in an RTF document.

Common Vulnerability Scoring System (CVSS)

AV:N/AC:M/Au:N/C:C/I:C/A:C

 

Verification logic

 

Reference

• DSA-2151-Third Party Advisory
• ADV-2011-0230-Broken Link
• http://www.openoffice.org/security/cves/CVE-2010-3451_CVE-2010-3452.html
• 43065-Broken Link
• 46031-Broken Link, Third Party Advisory, VDB Entry
• http://www.cs.brown.edu/people/drosenbe/research.html
• ADV-2011-0232-Broken Link
• https://bugzilla.redhat.com/show_bug.cgi?id=641282
• 1025002-Broken Link, Third Party Advisory, VDB Entry
• USN-1056-1-Third Party Advisory
• 42999-Broken Link
• 70712-Broken Link
• 43118-Broken Link
• 43105-Broken Link
• RHSA-2011:0181-Broken Link
• RHSA-2011:0182-Broken Link
• ADV-2011-0279-Broken Link
• MDVSA-2011:027-Broken Link
• http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html
• http://www.vsecurity.com/resources/advisory/20110126-1
• GLSA-201408-19-Third Party Advisory
• 60799-Broken Link
• 40775-Broken Link
• ooo-rtf-ce(65030)-Third Party Advisory, VDB Entry

 

Keywords

NVD

 

CVE-2010-3451

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures