Redhat » Enterprise Linux » 6.0 : Security Vulnerabilities, CVEs, Published In 2012 (Code Execution)
Multiple heap-based buffer overflows in the XML manifest encryption tag parsing functionality in OpenOffice.org and LibreOffice before 3.5.5 allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted Open Document Text (.odt) file with (1) a child tag within an incorrect parent tag, (2) duplicate tags, or (3) a Base64 ChecksumAttribute whose length is not evenly divisible by four.
Max CVSS
7.5
EPSS Score
4.14%
Published
2012-08-06
Updated
2023-02-13
Integer signedness error in the png_inflate function in pngrutil.c in libpng before 1.4.10beta01, as used in Google Chrome before 17.0.963.83 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file, a different vulnerability than CVE-2011-3026.
Max CVSS
6.8
EPSS Score
14.18%
Published
2012-03-22
Updated
2020-04-14
2 vulnerabilities found