JVN/CVE Demo: Cveinfos

CVE

Id: 32269
CVE No.: CVE-2008-2152
Status: Candidate
Description: Integer overflow in the rtl_allocateMemory function in sal/rtl/source/alloc_global.c in OpenOffice.org (OOo) 2.0 through 2.4 allows remote attackers to execute arbitrary code via a crafted file that triggers a heap-based buffer overflow.
Phase: Assigned (20080512)
Votes: None (candidate not yet proposed)
Comments

Actions

Related CVE References

Id	CVE Id	CVE No.	Reference	Actions
348557	32269	CVE-2008-2152	IDEFENSE:20080610 Multiple Vendor OpenOffice rtl_allocateMemory() Integer Overflow Vulnerability	View
348558	32269	CVE-2008-2152	URL:http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=714	View
348559	32269	CVE-2008-2152	CONFIRM:http://www.openoffice.org/security/cves/CVE-2008-2152.html	View
348560	32269	CVE-2008-2152	FEDORA:FEDORA-2008-5143	View
348561	32269	CVE-2008-2152	URL:https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00385.html	View
348562	32269	CVE-2008-2152	FEDORA:FEDORA-2008-5239	View
348563	32269	CVE-2008-2152	URL:https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00473.html	View
348564	32269	CVE-2008-2152	FEDORA:FEDORA-2008-5247	View
348565	32269	CVE-2008-2152	URL:https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00499.html	View
348566	32269	CVE-2008-2152	GENTOO:GLSA-200807-05	View
348567	32269	CVE-2008-2152	URL:http://security.gentoo.org/glsa/glsa-200807-05.xml	View
348568	32269	CVE-2008-2152	MANDRIVA:MDVSA-2008:137	View
348569	32269	CVE-2008-2152	URL:http://www.mandriva.com/security/advisories?name=MDVSA-2008:137	View
348570	32269	CVE-2008-2152	MANDRIVA:MDVSA-2008:138	View
348571	32269	CVE-2008-2152	URL:http://www.mandriva.com/security/advisories?name=MDVSA-2008:138	View
348572	32269	CVE-2008-2152	REDHAT:RHSA-2008:0538	View
348573	32269	CVE-2008-2152	URL:http://www.redhat.com/support/errata/RHSA-2008-0538.html	View
348574	32269	CVE-2008-2152	REDHAT:RHSA-2008:0537	View
348575	32269	CVE-2008-2152	URL:http://www.redhat.com/support/errata/RHSA-2008-0537.html	View
348576	32269	CVE-2008-2152	SUNALERT:237944	View
348577	32269	CVE-2008-2152	URL:http://sunsolve.sun.com/search/document.do?assetkey=1-26-237944-1	View
348578	32269	CVE-2008-2152	BID:29622	View
348579	32269	CVE-2008-2152	URL:http://www.securityfocus.com/bid/29622	View
348580	32269	CVE-2008-2152	OVAL:oval:org.mitre.oval:def:9787	View
348581	32269	CVE-2008-2152	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:9787	View
348582	32269	CVE-2008-2152	VUPEN:ADV-2008-1773	View
348583	32269	CVE-2008-2152	URL:http://www.vupen.com/english/advisories/2008/1773	View
348584	32269	CVE-2008-2152	VUPEN:ADV-2008-1804	View
348585	32269	CVE-2008-2152	URL:http://www.vupen.com/english/advisories/2008/1804/references	View
348586	32269	CVE-2008-2152	SECTRACK:1020219	View
348587	32269	CVE-2008-2152	URL:http://www.securitytracker.com/id?1020219	View
348588	32269	CVE-2008-2152	SECUNIA:30599	View
348589	32269	CVE-2008-2152	URL:http://secunia.com/advisories/30599	View
348590	32269	CVE-2008-2152	SECUNIA:30633	View
348591	32269	CVE-2008-2152	URL:http://secunia.com/advisories/30633	View
348592	32269	CVE-2008-2152	SECUNIA:30634	View
348593	32269	CVE-2008-2152	URL:http://secunia.com/advisories/30634	View
348594	32269	CVE-2008-2152	SECUNIA:30635	View
348595	32269	CVE-2008-2152	URL:http://secunia.com/advisories/30635	View
348596	32269	CVE-2008-2152	SECUNIA:31029	View
348597	32269	CVE-2008-2152	URL:http://secunia.com/advisories/31029	View
348598	32269	CVE-2008-2152	XF:openoffice-rtlallocatememory-bo(42957)	View

Message	Memory use
Component initialization	1.39 MB
Controller action start	1.49 MB
Controller render start	2.32 MB
View render complete	2.79 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	2.73
Event: Controller.initialize	0.02
Event: Controller.startup	0.06
Controller action	414.15
Event: Controller.beforeRender	4.30
» Processing toolbar data	4.20
Rendering View	12.62
» Event: View.beforeRender	0.02
» Rendering APP/View/Cveinfos/view.ctp	11.71
» Event: View.afterRender	0.02
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	0.49
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	0.09
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/cveinfos/view/32269
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/cveinfos/view/32269
Remote Port	9805
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	216.73.216.147
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Connection	close
Http Cache Control	max-age=259200
Http X Forwarded For	10.3.70.135
Http Via	1.1 squid-proxy-5b5d847c96-hgfvd (squid/6.10)
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Suspectdos	1
X Dostranslated Ip	216.73.216.147
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	216.73.216.147
Unique Id	aKVIVkHrSKOanjt8iR5pLQAAACg
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Suspectdos	1
Redirect X Dostranslated Ip	216.73.216.147
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	216.73.216.147
Redirect Unique Id	aKVIVkHrSKOanjt8iR5pLQAAACg
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect Suspectdos	1
Redirect Redirect X Dostranslated Ip	216.73.216.147
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	216.73.216.147
Redirect Redirect Unique Id	aKVIVkHrSKOanjt8iR5pLQAAACg
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1755662422.3865
Request Time	1755662422

CVE

Actions

Related CVE References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files