CVE-2005-0941

Loading...

General

Score:5.1/10.0
Severity:Medium
Category:N/A

Impact Metrics

Confidentiality:Partial
Integrity:Partial
Availability:Partial

Exploitability Metrics

Access Vector:Network
Access Complexity:High
Authentication:None

Published on 02/05/05 - Updated on 11/10/17

Description

The StgCompObjStream::Load function in OpenOffice.org OpenOffice 1.1.4 and earlier allocates memory based on 16 bit length values, but process memory using 32 bit values, which allows remote attackers to cause a denial of service and possibly execute arbitrary code via a DOC document with certain length values, which leads to a heap-based buffer overflow.

Category:

There is insufficient information about the issue to classify it; details are unknown or unspecified.

Security Notices

US National Vulnerability DatabaseCVE-2005-0941

Exploits

No exploits available for this CVE in our database.

Relative technologies

VendorProduct
openofficeopenoffice

Share this vulnerability with:

Twitter Facebook LinkedIn Mail