CVE-2010-2935

  1. Reconshell
  2. Vulnerabilities (CVE)
  3. CVE-2010-2935
simpress.bin in the Impress module in OpenOffice.org (OOo) 2.x and 3.x before 3.3 does not properly handle integer values associated with dictionary property items, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PowerPoint document that triggers a heap-based buffer overflow, related to an "integer truncation error."

9.3 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 8.6 / Impact : 10.0

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References
Link Resource
http://secunia.com/advisories/40775 Vendor Advisory
http://www.vupen.com/english/advisories/2010/2003 Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2010-0643.html
http://www.vupen.com/english/advisories/2010/2149 Vendor Advisory
http://www.openoffice.org/servlets/ReadMsg?list=dev&msgNo=27690
http://www.openwall.com/lists/oss-security/2010/08/11/1
http://www.openwall.com/lists/oss-security/2010/08/11/4
http://securityevaluators.com/files/papers/CrashAnalysis.pdf
https://bugzilla.redhat.com/show_bug.cgi?id=622529
http://secunia.com/advisories/41052 Vendor Advisory
http://www.debian.org/security/2010/dsa-2099
http://secunia.com/advisories/41235
http://www.vupen.com/english/advisories/2010/2228
http://www.securitytracker.com/id?1024352
http://www.vupen.com/english/advisories/2010/2905
http://www.mandriva.com/security/advisories?name=MDVSA-2010:221
http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html
http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html
http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html
http://secunia.com/advisories/42927
http://www.securitytracker.com/id?1024976
http://www.vupen.com/english/advisories/2011/0150
http://www.openoffice.org/security/cves/CVE-2010-2935_CVE-2010-2936.html
http://www.vupen.com/english/advisories/2011/0230
http://ubuntu.com/usn/usn-1056-1
http://secunia.com/advisories/43105
http://www.vupen.com/english/advisories/2011/0279
http://secunia.com/advisories/60799
http://www.gentoo.org/security/en/glsa/glsa-201408-19.xml
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12063
Advertisement

NeevaHost hosting service
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:openoffice:openoffice.org:3.2.1:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
Information

Published : 2010-08-25 13:00

Updated : 2017-09-18 18:31

NVD link : CVE-2010-2935

Mitre link : CVE-2010-2935

JSON object : View

CWE
CWE-189

Numeric Errors

Advertisement

dedicated server usa
Products Affected

openoffice

  • openoffice.org

microsoft

  • windows