Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apache openoffice vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2020-13958
A vulnerability in Apache OpenOffice scripting events allows an malicious user to construct documents containing hyperlinks pointing to an executable on the target users file system. These hyperlinks can be triggered unconditionally. In fixed versions no internal protocol may be ...
Apache Openoffice
1 Github repository
9.3
CVSSv2
CVE-2016-6804
The Apache OpenOffice installer (versions before 4.1.3, including some branded as OpenOffice.org) for Windows contains a defective operation that allows execution of arbitrary code with elevated privileges. This requires that the location in which the installer is run has been pr...
Apache Openoffice
9.3
CVSSv2
CVE-2016-6803
An installer defect known as an "unquoted Windows search path vulnerability" affected the Apache OpenOffice prior to 4.1.3 installers for Windows. The PC must have previously been infected by a Trojan Horse application (or user) running with administrative privilege. An...
Apache Openoffice
9.3
CVSSv2
CVE-2014-3524
Apache OpenOffice prior to 4.1.1 allows remote malicious users to execute arbitrary commands and possibly have other unspecified impact via a crafted Calc spreadsheet.
Apache Openoffice
Libreoffice Libreoffice
3 Github repositories
9.3
CVSSv2
CVE-2010-3450
Multiple directory traversal vulnerabilities in OpenOffice.org (OOo) 2.x and 3.x prior to 3.3 allow remote malicious users to overwrite arbitrary files via a .. (dot dot) in an entry in (1) an XSLT JAR filter description file, (2) an Extension (aka OXT) file, or unspecified other...
Apache Openoffice
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 10.10
Debian Debian Linux 5.0
Debian Debian Linux 6.0
9.3
CVSSv2
CVE-2010-3451
Use-after-free vulnerability in oowriter in OpenOffice.org (OOo) 2.x and 3.x prior to 3.3 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via malformed tables in an RTF document.
Apache Openoffice
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 10.10
Debian Debian Linux 5.0
Debian Debian Linux 6.0
9.3
CVSSv2
CVE-2010-3452
Use-after-free vulnerability in oowriter in OpenOffice.org (OOo) 2.x and 3.x prior to 3.3 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via crafted tags in an RTF document.
Apache Openoffice
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 10.10
Debian Debian Linux 5.0
Debian Debian Linux 6.0
9.3
CVSSv2
CVE-2010-3453
The WW8ListManager::WW8ListManager function in oowriter in OpenOffice.org (OOo) 2.x and 3.x prior to 3.3 does not properly handle an unspecified number of list levels in user-defined list styles in WW8 data in a Microsoft Word document, which allows remote malicious users to caus...
Apache Openoffice
Debian Debian Linux 5.0
Canonical Ubuntu Linux 10.10
Debian Debian Linux 6.0
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 10.04
9.3
CVSSv2
CVE-2010-3454
Multiple off-by-one errors in the WW8DopTypography::ReadFromMem function in oowriter in OpenOffice.org (OOo) 2.x and 3.x prior to 3.3 allow remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via crafted typography informatio...
Apache Openoffice
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 10.10
Debian Debian Linux 5.0
Debian Debian Linux 6.0
9.3
CVSSv2
CVE-2010-4253
Heap-based buffer overflow in Impress in OpenOffice.org (OOo) 2.x and 3.x prior to 3.3 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file in an ODF or Microsoft Office document, as demonstrated ...
Apache Openoffice
Debian Debian Linux 5.0
Canonical Ubuntu Linux 10.10
Debian Debian Linux 6.0
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 10.04
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »