9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.334 Low
EPSS
Percentile
97.1%
The version of OpenOffice is earlier than 3.1.1. Such versions are potentially affected by several issues :
A boundary error when parsing certain records can be exploited to cause a heap-based buffer overflow via a specially crafted document. (CVE-2009-0201)
An integer underflow error when parsing certain records in the document table. (CVE-2009-0200)
A vulnerability in the parser of EMFS files can lead to the execution of arbitrary commands. (CVE-2009-2139)
Binary data 5145.prm
Vendor | Product | Version | CPE |
---|---|---|---|
sun | openoffice.org | cpe:/a:sun:openoffice.org |