Unrated severityNVD Advisory· Published Oct 21, 2011· Updated Apr 29, 2026
CVE-2011-2713
CVE-2011-2713
Description
oowriter in OpenOffice.org 3.3.0 and LibreOffice before 3.4.3 allows user-assisted remote attackers to cause a denial of service (crash) via a crafted DOC file that triggers an out-of-bounds read in the DOC sprm parser.
Affected products
9cpe:2.3:a:libreoffice:libreoffice:*:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:libreoffice:libreoffice:*:*:*:*:*:*:*:*range: <=3.4.2
- cpe:2.3:a:libreoffice:libreoffice:3.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:libreoffice:libreoffice:3.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:libreoffice:libreoffice:3.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:libreoffice:libreoffice:3.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:libreoffice:libreoffice:3.3.4:*:*:*:*:*:*:*
- cpe:2.3:a:libreoffice:libreoffice:3.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:libreoffice:libreoffice:3.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:sun:openoffice.org:3.3.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
14- lists.fedoraproject.org/pipermail/package-announce/2011-October/068198.htmlnvdPatch
- bugzilla.redhat.com/show_bug.cginvdPatch
- www.libreoffice.org/advisories/CVE-2011-2713/nvdVendor Advisory
- lists.fedoraproject.org/pipermail/package-announce/2011-October/068160.htmlnvd
- lists.opensuse.org/opensuse-updates/2011-10/msg00019.htmlnvd
- osvdb.org/76178nvd
- secunia.com/advisories/50692nvd
- secunia.com/advisories/60799nvd
- security.gentoo.org/glsa/glsa-201209-05.xmlnvd
- www.debian.org/security/2011/dsa-2315nvd
- www.gentoo.org/security/en/glsa/glsa-201408-19.xmlnvd
- www.mandriva.com/security/advisoriesnvd
- www.securityfocus.com/bid/49969nvd
- www.securitytracker.com/idnvd
News mentions
0No linked articles in our index yet.