Security Advisory

CVE-2012-0213

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2012-08-07 21:00:00

Last updated 2024-08-06 18:16:19

Assigner debian

State PUBLISHED

Description

The UnhandledDataStructure function in hwpf/model/UnhandledDataStructure.java in Apache POI 3.8 and earlier allows remote attackers to cause a denial of service (OutOfMemoryError exception and possibly JVM destabilization) via a crafted length value in a Channel Definition Format (CDF) or Compound File Binary Format (CFBF) document.

← Browse all CVEs View on cve.org ↗