Vulnerabilities > Openoffice > Openoffice ORG

DATE CVE VULNERABILITY TITLE RISK
2010-08-25 CVE-2010-2935 Numeric Errors vulnerability in Openoffice Openoffice.Org 3.2.1
simpress.bin in the Impress module in OpenOffice.org (OOo) 2.x and 3.x before 3.3 does not properly handle integer values associated with dictionary property items, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PowerPoint document that triggers a heap-based buffer overflow, related to an "integer truncation error."
network
openoffice microsoft CWE-189
critical
9.3
2009-10-06 CVE-2009-3571 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Openoffice Openoffice.Org
Unspecified vulnerability in OpenOffice.org (OOo) has unknown impact and client-side attack vector, as demonstrated by a certain module in VulnDisco Pack Professional 8.8, aka "Client-side exploit." NOTE: as of 20091005, this disclosure has no actionable information.
network
openoffice CWE-119
critical
9.3
2009-10-06 CVE-2009-3570 Remote Security vulnerability in OpenOffice
Unspecified vulnerability in OpenOffice.org (OOo) has unspecified impact and remote attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.9.
network
low complexity
openoffice
critical
10.0
2009-09-02 CVE-2009-0201 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Openoffice Openoffice.Org
Heap-based buffer overflow in OpenOffice.org (OOo) before 3.1.1 and StarOffice/StarSuite 7, 8, and 9 might allow remote attackers to execute arbitrary code via unspecified records in a crafted Word document, related to "table parsing."
network
openoffice CWE-119
critical
9.3
2009-09-02 CVE-2009-0200 Numeric Errors vulnerability in Openoffice Openoffice.Org
Integer underflow in OpenOffice.org (OOo) before 3.1.1 and StarOffice/StarSuite 7, 8, and 9 might allow remote attackers to execute arbitrary code via crafted records in the document table of a Word document, leading to a heap-based buffer overflow.
network
openoffice CWE-189
critical
9.3
2009-01-22 CVE-2009-0259 Resource Management Errors vulnerability in Openoffice Openoffice.Org
The Word processor in OpenOffice.org 1.1.2 through 1.1.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted (1) .doc, (2) .wri, or (3) .rtf Word 97 file that triggers memory corruption, as exploited in the wild in December 2008, as demonstrated by 2008-crash.doc.rar, and a similar issue to CVE-2008-4841.
network
openoffice CWE-399
critical
9.3
2008-11-05 CVE-2008-4937 Link Following vulnerability in Openoffice Openoffice.Org 2.4.1
senddoc in OpenOffice.org (OOo) 2.4.1 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/log.obr.##### temporary file.
local
high complexity
openoffice CWE-59
2.6
2008-10-30 CVE-2008-2238 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Openoffice Openoffice.Org
Multiple integer overflows in OpenOffice.org (OOo) 2.x before 2.4.2 allow remote attackers to execute arbitrary code via crafted EMR records in an EMF file associated with a StarOffice/StarSuite document, which trigger a heap-based buffer overflow.
network
openoffice CWE-119
critical
9.3
2008-10-30 CVE-2008-2237 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Openoffice Openoffice.Org
Heap-based buffer overflow in OpenOffice.org (OOo) 2.x before 2.4.2 allows remote attackers to execute arbitrary code via a crafted WMF file associated with a StarOffice/StarSuite document.
network
openoffice CWE-119
critical
9.3
2008-08-01 CVE-2008-3437 Code Injection vulnerability in Openoffice Openoffice.Org
OpenOffice.org (OOo) before 2.1.0 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and DNS cache poisoning.
network
low complexity
openoffice CWE-94
7.5