← back
CVE-2012-0037

CVE-2012-0037

EPSS 13.7%
Redland Raptor (aka libraptor) before 2.0.7, as used by OpenOffice 3.3 and 3.4 Beta, LibreOffice before 3.4.6 and 3.5.x before 3.5.1, and other products, allows user-assisted remote attackers to read arbitrary files via a crafted XML external entity (XXE) declaration and reference in an RDF document.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://blog.documentfoundation.org/2012/03/22/tdf-announces-libreoffice-3-4-6/http://librdf.org/raptor/RELEASE.html#rel2_0_7http://lists.fedoraproject.org/pipermail/package-announce/2012-April/077708.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2012-April/078242.htmlhttp://rhn.redhat.com/errata/RHSA-2012-0410.htmlhttp://rhn.redhat.com/errata/RHSA-2012-0411.htmlhttp://secunia.com/advisories/48479http://secunia.com/advisories/48493http://secunia.com/advisories/48494http://secunia.com/advisories/48526http://secunia.com/advisories/48529http://secunia.com/advisories/48542