Back to search
CVE-2008-2152
Published: Jun 10, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Integer overflow in the rtl_allocateMemory function in sal/rtl/source/alloc_global.c in OpenOffice.org (OOo) 2.0 through 2.4 allows remote attackers to execute arbitrary code via a crafted file that triggers a heap-based buffer overflow.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
30635
third-party-advisory
x_refsource_SECUNIA
RHSA-2008:0537
vendor-advisory
x_refsource_REDHAT
30633
third-party-advisory
x_refsource_SECUNIA
237944
vendor-advisory
x_refsource_SUNALERT
FEDORA-2008-5143
vendor-advisory
x_refsource_FEDORA
1020219
vdb-entry
x_refsource_SECTRACK
FEDORA-2008-5247
vendor-advisory
x_refsource_FEDORA
GLSA-200807-05
vendor-advisory
x_refsource_GENTOO
ADV-2008-1804
vdb-entry
x_refsource_VUPEN
oval:org.mitre.oval:def:9787
vdb-entry
signature
x_refsource_OVAL
MDVSA-2008:138
vendor-advisory
x_refsource_MANDRIVA
http://www.openoffice.org/security/cves/CVE-2008-2152.html
x_refsource_CONFIRM
RHSA-2008:0538
vendor-advisory
x_refsource_REDHAT
30634
third-party-advisory
x_refsource_SECUNIA
30599
third-party-advisory
x_refsource_SECUNIA
FEDORA-2008-5239
vendor-advisory
x_refsource_FEDORA
20080610 Multiple Vendor OpenOffice rtl_allocateMemory() Integer Overflow Vulnerability
third-party-advisory
x_refsource_IDEFENSE
openoffice-rtlallocatememory-bo(42957)
vdb-entry
x_refsource_XF
ADV-2008-1773
vdb-entry
x_refsource_VUPEN
29622
vdb-entry
x_refsource_BID
31029
third-party-advisory
x_refsource_SECUNIA
MDVSA-2008:137
vendor-advisory
x_refsource_MANDRIVA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now