CVE-2021-33035

CWE-120 — Classic Buffer Overflow7 documents7 sources

Severity

7.8HIGH

EPSS

6.2%

top 9.10%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apache Software Foundation Apache Openoffice Apache Openoffice

Timeline

PublishedSep 23

Latest updateMay 2

Description

Apache OpenOffice opens dBase/DBF documents and shows the contents as spreadsheets. DBF are database files with data organized in fields. When reading DBF data the size of certain fields is not checked: the data is just copied into local variables. A carefully crafted document could overflow the allocated space, leading to the execution of arbitrary code by altering the contents of the program stack. This issue affects Apache OpenOffice up to and including version 4.1.10

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

▶NVDapache/openoffice4.1.10

▶CVEListV5apache_software_foundation/apache_openofficeApache OpenOffice — 4.1.10+1

▶Debianlibreoffice< 1:4.3.1-1+3

Patches

Patch: www.openwall.com ↗Patch: github.com ↗Patch: www.openwall.com ↗

🔴Vulnerability Details

GHSA

GHSA-p57v-vh5w-35p2: Apache OpenOffice opens dBase/DBF documents and shows the contents as spreadsheets↗2022-05-24

▶

CVEList

Buffer overflow from a crafted DBF file↗2021-09-23

▶

OSV

CVE-2021-33035: Apache OpenOffice opens dBase/DBF documents and shows the contents as spreadsheets↗2021-09-23

▶

VulnCheck

Apache openoffice Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')↗2021

▶

📋Vendor Advisories

Debian

CVE-2021-33035: libreoffice - Apache OpenOffice opens dBase/DBF documents and shows the contents as spreadshee...↗2021

▶

🕵️Threat Intelligence

Unit42

Network Security Trends: November 2022-January 2023↗2023-05-02

▶