Exploit the possiblities

OpenOffice.org 3.3.0 Powerpoint Denial Of Service

OpenOffice.org 3.3.0 Powerpoint Denial Of Service
Posted May 17, 2012
Authored by Sven Jacobias

A review of the code in filter/source/msfilter msdffimp.cxx in OpenOffice.org versions 3.3 and 3.4 Beta revealed some unchecked memory allocations, which could be exploited via malformed Powerpoint graphics records ("escher") to cause bad_alloc exceptions. From this vulnerability a denial of service attack is possible.

tags | advisory, denial of service
advisories | CVE-2012-2334
MD5 | f6d947efd4efd1f77c34bbe6c9eb9d3a

OpenOffice.org 3.3.0 Powerpoint Denial Of Service

Change Mirror Download
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

CVE-2012-2334 Vulnerabilities related to malformed Powerpoint files
in OpenOffice.org 3.3.0

Reference: http://www.openoffice.org/security/cves/CVE-2012-2334.html

Severity: Important

Vendor: The Apache Software Foundation

Versions Affected:

OpenOffice.org 3.3 and 3.4 Beta, on all platforms.
Earlier versions may be also affected.

Description:

A review of the code in filter/source/msfilter msdffimp.cxx revealed
some unchecked memory allocations, which could be exploited via
malformed Powerpoint graphics records ("escher") to cause bad_alloc
exceptions. From this vulnerability a denial of service attack is
possible.

Mitigation

OpenOffice.org 3.3.0 and 3.4 beta users are advised to upgrade to
Apache OpenOffice 3.4. Users who are unable to upgrade immediately
should be cautious when opening untrusted documents.

Credits

The Apache OpenOffice Security Team credits Sven Jacobias as the
discoverer of this flaw.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
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=9Scx
-----END PGP SIGNATURE-----

Comments

RSS Feed Subscribe to this comment feed

No comments yet, be the first!

Login or Register to post a comment

Want To Donate?


Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

File Archive:

January 2018

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jan 1st
    2 Files
  • 2
    Jan 2nd
    13 Files
  • 3
    Jan 3rd
    16 Files
  • 4
    Jan 4th
    39 Files
  • 5
    Jan 5th
    26 Files
  • 6
    Jan 6th
    40 Files
  • 7
    Jan 7th
    2 Files
  • 8
    Jan 8th
    16 Files
  • 9
    Jan 9th
    25 Files
  • 10
    Jan 10th
    28 Files
  • 11
    Jan 11th
    44 Files
  • 12
    Jan 12th
    32 Files
  • 13
    Jan 13th
    2 Files
  • 14
    Jan 14th
    4 Files
  • 15
    Jan 15th
    31 Files
  • 16
    Jan 16th
    15 Files
  • 17
    Jan 17th
    16 Files
  • 18
    Jan 18th
    8 Files
  • 19
    Jan 19th
    0 Files
  • 20
    Jan 20th
    0 Files
  • 21
    Jan 21st
    0 Files
  • 22
    Jan 22nd
    0 Files
  • 23
    Jan 23rd
    0 Files
  • 24
    Jan 24th
    0 Files
  • 25
    Jan 25th
    0 Files
  • 26
    Jan 26th
    0 Files
  • 27
    Jan 27th
    0 Files
  • 28
    Jan 28th
    0 Files
  • 29
    Jan 29th
    0 Files
  • 30
    Jan 30th
    0 Files
  • 31
    Jan 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2018 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close