Published: 28/01/2011 Updated: 07/02/2022

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 828

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Multiple off-by-one errors in the WW8DopTypography::ReadFromMem function in oowriter in OpenOffice.org (OOo) 2.x and 3.x prior to 3.3 allow remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via crafted typography information in a Microsoft Word .DOC file that triggers an out-of-bounds write.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apache openoffice
canonical ubuntu linux 8.04
canonical ubuntu linux 9.10
canonical ubuntu linux 10.04
canonical ubuntu linux 10.10
debian debian linux 5.0
debian debian linux 6.0

Multiple vulnerabilities in OpenOfficeorg ...

Several security related problems have been discovered in the OpenOfficeorg package that allows malformed documents to trick the system into crashes or even the execution of arbitrary code CVE-2010-3450 During an internal security audit within Red Hat, a directory traversal vulnerability has been discovered in the way OpenOfficeorg ...

CWE-193 http://secunia.com/advisories/43065 http://www.vupen.com/english/advisories/2011/0232 http://www.securityfocus.com/bid/46031 http://www.vupen.com/english/advisories/2011/0230 https://bugzilla.redhat.com/show_bug.cgi?id=640954 http://www.cs.brown.edu/people/drosenbe/research.html http://www.debian.org/security/2011/dsa-2151 http://www.openoffice.org/security/cves/CVE-2010-3453_CVE-2010-3454.html http://secunia.com/advisories/42999 http://secunia.com/advisories/43105 http://www.redhat.com/support/errata/RHSA-2011-0182.html http://www.securitytracker.com/id?1025002 http://ubuntu.com/usn/usn-1056-1 http://www.redhat.com/support/errata/RHSA-2011-0181.html http://secunia.com/advisories/43118 http://osvdb.org/70715 http://www.vupen.com/english/advisories/2011/0279 http://www.mandriva.com/security/advisories?name=MDVSA-2011:027 http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html http://www.vsecurity.com/resources/advisory/20110126-1 http://www.gentoo.org/security/en/glsa/glsa-201408-19.xml http://secunia.com/advisories/60799 http://secunia.com/advisories/40775 https://usn.ubuntu.com/1056-1/https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2010-3454

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect