Multiple heap-based buffer overflows in the XML manifest encryption tag parsing functionality in OpenOffice.org and LibreOffice prior to 3.5.5 allow remote malicious users to cause a denial of service and possibly execute arbitrary code via a crafted Open Document Text (.odt) file with (1) a child tag within an incorrect parent tag, (2) duplicate tags, or (3) a Base64 ChecksumAttribute whose length is not evenly divisible by four.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache openoffice |
||
libreoffice libreoffice |
||
redhat enterprise linux 6.0 |
||
canonical ubuntu linux 11.04 |
||
redhat enterprise linux server from rhui 6 6.0 |
||
redhat enterprise linux for ibm z systems 6.0 |
||
canonical ubuntu linux 11.10 |
||
debian debian linux 7.0 |
||
debian debian linux 6.0 |
||
redhat enterprise linux desktop 6.0 |
||
redhat enterprise linux server 6.0 |
||
redhat enterprise linux for power big endian 6.0 |
||
redhat enterprise linux workstation 6.0 |
||
canonical ubuntu linux 10.04 |
||
canonical ubuntu linux 12.04 |