Fortiguard

Improper Restriction of XML Vulnerability CVE-2021-40439 for OpenOffice

Description

Apache OpenOffice has a dependency on expat software. Versions prior to 2.1.0 were subject to CVE-2013-0340 a \"Billion Laughs\" entity expansion denial of service attack and exploit via crafted XML files. ODF files consist of a set of XML files. All versions of Apache OpenOffice up to 4.1.10 are subject to this issue. expat in version 4.1.11 is patched.

Affected Applications

OpenOffice

CVE References

CVE-2021-40439

Other References

https://www.openoffice.org/security/bulletin.html

ID	4258
Created	Feb 23, 2022
Description Updated	Feb 23, 2022
Severity
Coverage	FortiClient
OS	Windows
Vendor	Apache
Patch	manual
Application	OpenOffice

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

FortiGate

FortiClient

FortiSandBox

FortiMail

FortiADC

FortiWeb

FortiCNP

FortiNDR

FortiDeceptor

FortiEDR

FortiAnalyzer

FortiTester

Threat Encyclopedia

Improper Restriction of XML Vulnerability CVE-2021-40439 for OpenOffice

Description

Affected Applications

CVE References

Other References

Telemetry

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

FortiGate

FortiClient

FortiSandBox

FortiMail

FortiADC

FortiWeb

FortiCNP

FortiNDR

FortiDeceptor

FortiEDR

FortiAnalyzer

FortiTester

Threat Intelligence Center

Resource Center

About

About FortiGuard Labs

Partners

Threat Encyclopedia

Improper Restriction of XML Vulnerability CVE-2021-40439 for OpenOffice

Description

Affected Applications

CVE References

Other References

Telemetry

Threat Intelligence
Center