CVE-2014-3575
published 2014-08-27CVE-2014-3575: The OLE preview generation in Apache OpenOffice before 4.1.1 and OpenOffice.org (OOo) might allow remote attackers to embed arbitrary data into documents via…
medium4.3CVSS 3.1
AVNACMAuNCPINAN
The OLE preview generation in Apache OpenOffice before 4.1.1 and OpenOffice.org (OOo) might allow remote attackers to embed arbitrary data into documents via crafted OLE objects.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | openoffice | < 4.1.1 | 4.1.1 |
| libreoffice | libreoffice | < 4.2.6 | 4.2.6 |
| libreoffice | libreoffice | >= 0 < 1:4.2.6.3-0ubuntu1 | 1:4.2.6.3-0ubuntu1 |
| libreoffice | libreoffice | >= 4.3.0 < 4.3.1 | 4.3.1 |
| redhat | enterprise_linux_desktop | — | — |
| redhat | enterprise_linux_server | — | — |
| redhat | enterprise_linux_workstation | — | — |
CVSS provenance
nvd4.3MEDIUMAV:N/AC:M/Au:N/C:P/I:N/A:N
osv4.3MEDIUM