Back to search
CVE-2008-3282
Published: Aug 29, 2008
Modified: Jan 17, 2025
PUBLISHED
Description
Integer overflow in the rtl_allocateMemory function in sal/rtl/source/alloc_global.c in the memory allocator in OpenOffice.org (OOo) 2.4.1, on 64-bit platforms, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted document, related to a "numeric truncation error," a different vulnerability than CVE-2008-2152.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
31646
third-party-advisory
x_refsource_SECUNIA
FEDORA-2008-7680
vendor-advisory
x_refsource_FEDORA
1020764
vdb-entry
x_refsource_SECTRACK
31640
third-party-advisory
x_refsource_SECUNIA
ADV-2008-2449
vdb-entry
x_refsource_VUPEN
FEDORA-2008-7531
vendor-advisory
x_refsource_FEDORA
openoffice-rtlallocatememory-code-execution(44742)
vdb-entry
x_refsource_XF
https://bugzilla.redhat.com/show_bug.cgi?id=458056
x_refsource_CONFIRM
RHSA-2008:0835
vendor-advisory
x_refsource_REDHAT
30866
vdb-entry
x_refsource_BID
http://www.openoffice.org/issues/show_bug.cgi?id=92217
x_refsource_CONFIRM
oval:org.mitre.oval:def:11345
vdb-entry
signature
x_refsource_OVAL
https://bugzilla.redhat.com/show_bug.cgi?id=455867
x_refsource_CONFIRM
31778
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now