NVD

Id
66690  
Name
CVE-2005-0941  
Description
The StgCompObjStream::Load function in OpenOffice.org OpenOffice 1.1.4 and earlier allocates memory based on 16 bit length values, but process memory using 32 bit values, which allows remote attackers to cause a denial of service and possibly execute arbitrary code via a DOC document with certain length values, which leads to a heap-based buffer overflow.  
Reject
 
CVSS Version
2  
CVSS Score
5.1  
Severity
Medium  
CVSS Base Score
5.1  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
4.9  
CVSS Vector
(AV:N/AC:H/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-03  
Published
2005-05-02  
Modified Date
2010-08-21  
Seq
2005-0941  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
346586 66690 CVE-2005-0941 oval:org.mitre.oval:def:9106  View
346587 66690 CVE-2005-0941 GLSA-200504-13  View
346588 66690 CVE-2005-0941 SUSE-SR:2005:021  View
346589 66690 CVE-2005-0941 http://www.openoffice.org/issues/show_bug.cgi?id=46388  View
346590 66690 CVE-2005-0941 RHSA-2005:375  View
346591 66690 CVE-2005-0941 20050412 OpenOffice DOC document Heap Overflow  View
346592 66690 CVE-2005-0941 13092  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
62040 JVNDB-2005-000242 OpenOffice.org Writer の StgCompObjStream::Load() メソッドにおけるヒープオーバーフローの脆弱性 OpenOffice.org のワードプロセッサにおいて、 StgCompObjStream::Load() メソッドに、意図的な .doc ファイルを Writer で開くように、ユーザが誘導された場合に、ヒープオーバーフローが発生する脆弱性が存在します。 CVE-2005-0941 12145 CVE-2005-0941 66690 5.1 http://jvndb.jvn.jp/ja/contents/2005/JVNDB-2005-000242.html 2005-04-11 2007-04-01 View