Apache POI CVE-2012-0213 Denial Of Service Vulnerability
BID:53487
Info
Apache POI CVE-2012-0213 Denial Of Service Vulnerability
| Bugtraq ID: | 53487 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2012-0213 |
| Remote: | Yes |
| Local: | No |
| Published: | May 11 2012 12:00AM |
| Updated: | Dec 20 2016 03:10AM |
| Credit: | Reported by the vendor |
| Vulnerable: |
Redhat JBoss Enterprise Portal Platform 5.2.1 Mandriva Business Server 1 X86 64 Mandriva Business Server 1 IBM WebSphere Dashboard Framework 7.0.1 IBM Web Experience Factory 8.0 3 IBM Web Experience Factory 8.5.0.1 IBM Web Experience Factory 8.5 IBM Web Experience Factory 8.0 IBM Tivoli Service Request Manager - IBM Tivoli Integration Composer 0 IBM Tivoli Change And Configuration Management Database 0 IBM Tivoli Asset Management for IT 0 IBM SmartCloud Control Desk 0 IBM QRadar 7.2 IBM QRadar 7.1 IBM PredictiveInsight 9.0 IBM PredictiveInsight 8.6 IBM Maximo for Utilities 0 IBM Maximo for Transportation 0 IBM Maximo for Oil and Gas 0 IBM Maximo for Nuclear Power 0 IBM Maximo for Life Sciences 0 IBM Maximo for Government 0 IBM Maximo for Energy Optimization 0 IBM Maximo for Aviation 0 IBM Maximo Asset Management 7.5 6 IBM Maximo Asset Management 7.5 .0 IBM Maximo Asset Management 7.1.1 IBM Maximo Asset Management 7.6 IBM Maximo Asset Management 7.5.0.5 IBM Maximo Asset Management 7.5.0.4 IBM Maximo Asset Management 7.5.0.3 IBM Maximo Asset Management 7.5.0.2 IBM Maximo Asset Management 7.5.0.10 IBM Maximo Asset Management 7.5.0.1 IBM Maximo Asset Management 7.1 Debian Linux 6.0 sparc Debian Linux 6.0 s/390 Debian Linux 6.0 powerpc Debian Linux 6.0 mips Debian Linux 6.0 ia-64 Debian Linux 6.0 ia-32 Debian Linux 6.0 arm Debian Linux 6.0 amd64 Apache Apache POI 0 |
| Not Vulnerable: |
Redhat JBoss Enterprise Portal Platform 5.2.2 |
Discussion
Apache POI CVE-2012-0213 Denial Of Service Vulnerability
Apache POI is prone to a remote denial-of-service vulnerability.
Attackers may leverage this issue to cause denial-of-service conditions.
Apache POI is prone to a remote denial-of-service vulnerability.
Attackers may leverage this issue to cause denial-of-service conditions.
Exploit / POC
Apache POI CVE-2012-0213 Denial Of Service Vulnerability
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Apache POI CVE-2012-0213 Denial Of Service Vulnerability
Solution:
Updates are available. Please see the references for more information.
Mandriva Business Server 1 X86 64
Solution:
Updates are available. Please see the references for more information.
Mandriva Business Server 1 X86 64
-
Mandriva jakarta-poi-3.1-0.0.5.1.mbs1.noarch.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva jakarta-poi-javadoc-3.1-0.0.5.1.mbs1.noarch.rpm
http://www.mandriva.com/en/downloads/ -
Mandriva jakarta-poi-manual-3.1-0.0.5.1.mbs1.noarch.rpm
http://www.mandriva.com/en/downloads/
References
Apache POI CVE-2012-0213 Denial Of Service Vulnerability
References:
References:
- Apache POI - the Java API for Microsoft Documents (Apache Software Foundation)
- Bug 799078 - (CVE-2012-0213) CVE-2012-0213 apache-poi, jakarta: JVM destabilizat (Red Hat)
- JBoss Enterprise Portal Platform 5.2.2 Update (Red Hat)
- swg21989525: Multiple vulnerabilities in Apache POI affect Asset and Service Man (IBM)
- swg21991839: IBM WebSphere Dashboard Framework is affected by multiple security (IBM)
- swg21991845: IBM Web Experience Factory is affected by multiple security vulnera (IBM)
- swg21991969: Multiple vulnerabilities in Apache POI affect IBM PredictiveInsight (IBM)
- swg21994719: Apache POI as used in IBM QRadar SIEM is vulnerable to various CVEs (IBM)