QwikSec

Security Database

CVE

CWE

Training

CVE-2010-3453

Published: Jan 28, 2011

Modified: Aug 7, 2024

PUBLISHED

Description

The WW8ListManager::WW8ListManager function in oowriter in OpenOffice.org (OOo) 2.x and 3.x before 3.3 does not properly handle an unspecified number of list levels in user-defined list styles in WW8 data in a Microsoft Word document, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted .DOC file that triggers an out-of-bounds write.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_BID

vendor-advisory

x_refsource_DEBIAN

third-party-advisory

x_refsource_SECUNIA

http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html

x_refsource_CONFIRM

vendor-advisory

x_refsource_GENTOO

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_VUPEN

vdb-entry

x_refsource_SECTRACK

http://www.openoffice.org/security/cves/CVE-2010-3453_CVE-2010-3454.html

x_refsource_CONFIRM

vdb-entry

x_refsource_VUPEN

https://bugzilla.redhat.com/show_bug.cgi?id=640950

x_refsource_CONFIRM

vendor-advisory

x_refsource_REDHAT

vendor-advisory

x_refsource_UBUNTU

vendor-advisory

x_refsource_REDHAT

vdb-entry

x_refsource_OSVDB

vdb-entry

x_refsource_VUPEN

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_MANDRIVA

http://www.vsecurity.com/resources/advisory/20110126-1

x_refsource_MISC

http://www.cs.brown.edu/people/drosenbe/research.html

x_refsource_MISC

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.