NVD

Id
42350  
Name
CVE-2012-0213  
Description
The UnhandledDataStructure function in hwpf/model/UnhandledDataStructure.java in Apache POI 3.8 and earlier allows remote attackers to cause a denial of service (OutOfMemoryError exception and possibly JVM destabilization) via a crafted length value in a Channel Definition Format (CDF) or Compound File Binary Format (CFBF) document.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:N/I:N/A:P)  
Pub Date
2017-02-15  
Published
2012-08-07  
Modified Date
2017-02-10  
Seq
2012-0213  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
213653 42350 CVE-2012-0213 FEDORA-2012-10835  View
213654 42350 CVE-2012-0213 RHSA-2012:1232  View
213655 42350 CVE-2012-0213 DSA-2468  View
213656 42350 CVE-2012-0213 MDVSA-2013:094  View
213657 42350 CVE-2012-0213 53487  View
213658 42350 CVE-2012-0213 https://bugzilla.redhat.com/show_bug.cgi?id=799078  View
213659 42350 CVE-2012-0213 https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0044  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
27797 JVNDB-2012-003504 Apache POI におけるサービス運用妨害 (DoS) の脆弱性 Apache POI の hwpf/model/UnhandledDataStructure.java 内の UnhandledDataStructure 関数には、サービス運用妨害 (OutOfMemoryError 例外および JVM の不安定化) 状態となる脆弱性が存在します。 CVE-2012-0213 53451 CVE-2012-0213 42350 5 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-003504.html 2012-08-07 2012-11-30 View