Buffer overflow in Apache Openoffice

CVE-2010-4253

Heap-based buffer overflow in Impress in OpenOffice.org (OOo) 2.x and 3.x before 3.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file in an ODF or Microsoft…

Vulnerability class: Buffer Overflow

EPSS: 0.062 (91.1th percentile) — read the EPSS interpretation.

Affected products

Apache Openoffice
Canonical Ubuntu_linux — versions 8.04, 9.10, 10.04
Debian Debian_linux — versions 5.0, 6.0
N/a — versions n/a

Weakness classification (CWE)

CWE-787 — Out-of-bounds Write

References

40775 (x_refsource_SECUNIA, Broken Link, third-party-advisory)
46031 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_BID, Broken Link)
secalert@redhat.com (x_refsource_CONFIRM, Third Party Advisory, Issue Tracking)
DSA-2151 (vendor-advisory, Third Party Advisory, x_refsource_DEBIAN)
60799 (x_refsource_SECUNIA, Broken Link, third-party-advisory)
secalert@redhat.com (x_refsource_CONFIRM, Third Party Advisory)
GLSA-201408-19 (vendor-advisory, Third Party Advisory, x_refsource_GENTOO)
secalert@redhat.com (x_refsource_CONFIRM, Vendor Advisory)
43065 (x_refsource_SECUNIA, Broken Link, third-party-advisory)
ADV-2011-0230 (vdb-entry, x_refsource_VUPEN, Broken Link, Vendor Advisory)