Vulnerability Details CVE-2014-9527
HSLFSlideShow in Apache POI before 3.11 allows remote attackers to cause a denial of service (infinite loop and deadlock) via a crafted PPT file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.012
EPSS Ranking 78.1%
CVSS Severity
CVSS v2 Score 5.0
References
- http://lists.fedoraproject.org/pipermail/package-announce/2015-February/150228.html
- http://poi.apache.org/changes.html
- http://secunia.com/advisories/61953
- http://www-01.ibm.com/support/docview.wss?uid=swg21996759
- http://www.securityfocus.com/bid/77726
- https://access.redhat.com/errata/RHSA-2016:1135
- https://issues.apache.org/bugzilla/show_bug.cgi?id=57272
- http://lists.fedoraproject.org/pipermail/package-announce/2015-February/150228.html
- http://poi.apache.org/changes.html
- http://secunia.com/advisories/61953
- http://www-01.ibm.com/support/docview.wss?uid=swg21996759
- http://www.securityfocus.com/bid/77726
- https://access.redhat.com/errata/RHSA-2016:1135
- https://issues.apache.org/bugzilla/show_bug.cgi?id=57272