Vulnerability in Apache Poi
CVE-2012-0213
The UnhandledDataStructure function in hwpf/model/UnhandledDataStructure.java in Apache POI 3.8 and earlier allows remote attackers to cause a denial of service (OutOfMemoryError exception and possibly JVM destabilization) via a crafted le…
EPSS: 0.131 (94.2th percentile) — read the EPSS interpretation.
Affected products
- Apache Poi — versions 0.1, 0.2, 0.3
- N/a — versions n/a
Weakness classification (CWE)
References
- security@debian.org (x_refsource_CONFIRM)
- 49040 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
- security@debian.org (x_refsource_CONFIRM)
- DSA-2468 (vendor-advisory, x_refsource_DEBIAN)
- 50549 (x_refsource_SECUNIA, third-party-advisory)
- FEDORA-2012-10835 (x_refsource_FEDORA, vendor-advisory)
- 53487 (vdb-entry, x_refsource_BID)
- RHSA-2012:1232 (x_refsource_REDHAT, vendor-advisory)
- MDVSA-2013:094 (vendor-advisory, x_refsource_MANDRIVA)
- security@debian.org (x_refsource_MISC)