CVE-2013-2189

Apache Openoffice < 4.0.0 - Out-of-Bounds Write

Title source: rule

Description

Apache OpenOffice.org (OOo) before 4.0 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via invalid PLCF data in a DOC document file.

References (3)

[Broken Link] http://osvdb.org/95704

[Issue Tracking, Mailing List, Third Party Advisory] http://seclists.org/bugtraq/2013/Jul/173

[Patch, Vendor Advisory] http://www.openoffice.org/security/cves/CVE-2013-2189.html

Scores

EPSS 0.0122

EPSS Percentile 78.9%

Classification

CWE

CWE-787

Status draft

Affected Products (1)

apache/openoffice < 4.0.0

Timeline

Published Jul 31, 2013

Tracked Since Feb 18, 2026