Vulnerability Details CVE-2016-1513
The Impress tool in Apache OpenOffice 4.1.2 and earlier allows remote attackers to cause a denial of service (out-of-bounds read or write) or execute arbitrary code via crafted MetaActions in an (1) ODP or (2) OTP file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 77.0%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 6.8
References
- http://www.openoffice.org/security/cves/CVE-2016-1513.html
- http://www.securityfocus.com/bid/92079
- http://www.securitytracker.com/id/1036443
- http://www.talosintelligence.com/reports/TALOS-2016-0051/
- http://www.ubuntu.com/usn/USN-3046-1
- https://bz.apache.org/ooo/show_bug.cgi?id=127045
- https://security.gentoo.org/glsa/201703-01
- http://www.openoffice.org/security/cves/CVE-2016-1513.html
- http://www.securityfocus.com/bid/92079
- http://www.securitytracker.com/id/1036443
- http://www.talosintelligence.com/reports/TALOS-2016-0051/
- http://www.ubuntu.com/usn/USN-3046-1
- https://bz.apache.org/ooo/show_bug.cgi?id=127045
- https://security.gentoo.org/glsa/201703-01
Products affected by CVE-2016-1513
-
cpe:2.3:a:apache:openoffice:-
-
cpe:2.3:a:apache:openoffice:1.0.2
-
cpe:2.3:a:apache:openoffice:1.0.3
-
cpe:2.3:a:apache:openoffice:1.1.0
-
cpe:2.3:a:apache:openoffice:1.1.4
-
cpe:2.3:a:apache:openoffice:1.1.5
-
cpe:2.3:a:apache:openoffice:2.0.0
-
cpe:2.3:a:apache:openoffice:2.0.1
-
cpe:2.3:a:apache:openoffice:2.0.2
-
cpe:2.3:a:apache:openoffice:2.0.3
-
cpe:2.3:a:apache:openoffice:2.0.4
-
cpe:2.3:a:apache:openoffice:2.1.0
-
cpe:2.3:a:apache:openoffice:2.2.0
-
cpe:2.3:a:apache:openoffice:2.2.1
-
cpe:2.3:a:apache:openoffice:2.3.0
-
cpe:2.3:a:apache:openoffice:2.3.1
-
cpe:2.3:a:apache:openoffice:2.4.0
-
cpe:2.3:a:apache:openoffice:2.4.1
-
cpe:2.3:a:apache:openoffice:2.4.2
-
cpe:2.3:a:apache:openoffice:2.4.3
-
cpe:2.3:a:apache:openoffice:3.0.0
-
cpe:2.3:a:apache:openoffice:3.0.1
-
cpe:2.3:a:apache:openoffice:3.1.0
-
cpe:2.3:a:apache:openoffice:3.1.1
-
cpe:2.3:a:apache:openoffice:3.2.0
-
cpe:2.3:a:apache:openoffice:3.2.1
-
cpe:2.3:a:apache:openoffice:3.3.0
-
cpe:2.3:a:apache:openoffice:3.4.0
-
cpe:2.3:a:apache:openoffice:3.4.1
-
cpe:2.3:a:apache:openoffice:4.0.0
-
cpe:2.3:a:apache:openoffice:4.0.1
-
cpe:2.3:a:apache:openoffice:4.1.0
-
cpe:2.3:a:apache:openoffice:4.1.1
-
cpe:2.3:a:apache:openoffice:4.1.2