CVE-2014-9527 - Vulnerability Details - OpenCVE

HSLFSlideShow in Apache POI before 3.11 allows remote attackers to cause a denial of service (infinite loop and deadlock) via a crafted PPT file.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

This CVE is not in the KEV list.

The EPSS score is 0.01231.

Key SSVC decision points have not yet been added.

Vendors	Products
Apache	Poi
Fedoraproject	Fedora
Redhat	Jboss Data Virtualization

Configuration 1 [-]

cpe:2.3:o:fedoraproject:fedora:20:*:*:*:*:*:*:*

Configuration 2 [-]

cpe:2.3:a:apache:poi:*:beta3:*:*:*:*:*:*

Package	CPE	Advisory	Released Date
Red Hat JBoss Data Virtualization 6.2
apache-poi	cpe:/a:redhat:jboss_data_virtualization:6.2	RHSA-2016:1135	2016-05-26T00:00:00Z

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2022-5754	HSLFSlideShow in Apache POI before 3.11 allows remote attackers to cause a denial of service (infinite loop and deadlock) via a crafted PPT file.
Github GHSA	GHSA-x9mm-6gpf-f749	Loop with Unreachable Exit Condition in Apache POI

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
http://lists.fedoraproject.org/pipermail/package-announce/2015-February/150228.html
http://poi.apache.org/changes.html
http://secunia.com/advisories/61953
http://www-01.ibm.com/support/docview.wss?uid=swg21996759
http://www.securityfocus.com/bid/77726
https://access.redhat.com/errata/RHSA-2016:1135
https://issues.apache.org/bugzilla/show_bug.cgi?id=57272
https://nvd.nist.gov/vuln/detail/CVE-2014-9527
https://www.cve.org/CVERecord?id=CVE-2014-9527

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2015-01-06T15:00:00

Updated: 2024-08-06T13:47:41.391Z

Reserved: 2015-01-06T00:00:00

Link: CVE-2014-9527

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2015-01-06T15:59:05.727

Modified: 2025-04-12T10:46:40.837

Link: CVE-2014-9527

Redhat

Severity : Moderate

Publid Date: 2014-12-21T00:00:00Z

Links: CVE-2014-9527 - Bugzilla

OpenCVE Enrichment

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2014-12-29T00:00:00", "descriptions": [{"lang": "en", "value": "HSLFSlideShow in Apache POI before 3.11 allows remote attackers to cause a denial of service (infinite loop and deadlock) via a crafted PPT file."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-02-10T21:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21996759"}, {"name": "RHSA-2016:1135", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "https://access.redhat.com/errata/RHSA-2016:1135"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://poi.apache.org/changes.html"}, {"name": "77726", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/77726"}, {"name": "61953", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/61953"}, {"name": "FEDORA-2015-2090", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-February/150228.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://issues.apache.org/bugzilla/show_bug.cgi?id=57272"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2014-9527", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "HSLFSlideShow in Apache POI before 3.11 allows remote attackers to cause a denial of service (infinite loop and deadlock) via a crafted PPT file."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://www-01.ibm.com/support/docview.wss?uid=swg21996759", "refsource": "CONFIRM", "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21996759"}, {"name": "RHSA-2016:1135", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2016:1135"}, {"name": "http://poi.apache.org/changes.html", "refsource": "CONFIRM", "url": "http://poi.apache.org/changes.html"}, {"name": "77726", "refsource": "BID", "url": "http://www.securityfocus.com/bid/77726"}, {"name": "61953", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/61953"}, {"name": "FEDORA-2015-2090", "refsource": "FEDORA", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-February/150228.html"}, {"name": "https://issues.apache.org/bugzilla/show_bug.cgi?id=57272", "refsource": "CONFIRM", "url": "https://issues.apache.org/bugzilla/show_bug.cgi?id=57272"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T13:47:41.391Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21996759"}, {"name": "RHSA-2016:1135", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "https://access.redhat.com/errata/RHSA-2016:1135"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://poi.apache.org/changes.html"}, {"name": "77726", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/77726"}, {"name": "61953", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/61953"}, {"name": "FEDORA-2015-2090", "tags": ["vendor-advisory", "x_refsource_FEDORA", "x_transferred"], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-February/150228.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://issues.apache.org/bugzilla/show_bug.cgi?id=57272"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2014-9527", "datePublished": "2015-01-06T15:00:00", "dateReserved": "2015-01-06T00:00:00", "dateUpdated": "2024-08-06T13:47:41.391Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:fedoraproject:fedora:20:*:*:*:*:*:*:*", "matchCriteriaId": "FF47C9F0-D8DA-4B55-89EB-9B2C9383ADB9", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:apache:poi:*:beta3:*:*:*:*:*:*", "matchCriteriaId": "0E4D7997-8DE0-4D93-8C8C-E9D8EF6BC1F8", "versionEndIncluding": "3.11", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "HSLFSlideShow in Apache POI before 3.11 allows remote attackers to cause a denial of service (infinite loop and deadlock) via a crafted PPT file."}, {"lang": "es", "value": "HSLFSlideShow en Apache POI anterior a 3.11 permite a atacantes remotos causar una denegaci\u00f3n de servicio (bucle infinito y bloqueo) a trav\u00e9s de un fichero PPT manipulado."}], "id": "CVE-2014-9527", "lastModified": "2025-04-12T10:46:40.837", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2015-01-06T15:59:05.727", "references": [{"source": "cve@mitre.org", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-February/150228.html"}, {"source": "cve@mitre.org", "url": "http://poi.apache.org/changes.html"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/61953"}, {"source": "cve@mitre.org", "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21996759"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/77726"}, {"source": "cve@mitre.org", "url": "https://access.redhat.com/errata/RHSA-2016:1135"}, {"source": "cve@mitre.org", "url": "https://issues.apache.org/bugzilla/show_bug.cgi?id=57272"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2015-February/150228.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://poi.apache.org/changes.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/61953"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21996759"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/77726"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://access.redhat.com/errata/RHSA-2016:1135"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://issues.apache.org/bugzilla/show_bug.cgi?id=57272"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-399"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2016:1135", "cpe": "cpe:/a:redhat:jboss_data_virtualization:6.2", "package": "apache-poi", "product_name": "Red Hat JBoss Data Virtualization 6.2", "release_date": "2016-05-26T00:00:00Z"}], "bugzilla": {"description": "apache-poi: denial of service in HSLFSlideShow via corrupted PPT file", "id": "1181223", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1181223"}, "csaw": false, "cvss": {"cvss_base_score": "4.3", "cvss_scoring_vector": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "status": "verified"}, "cwe": "CWE-20", "details": ["HSLFSlideShow in Apache POI before 3.11 allows remote attackers to cause a denial of service (infinite loop and deadlock) via a crafted PPT file.", "A denial of service flaw was found in the way the HSLFSlideShow class implementation in Apache POI handled certain PPT files. A remote attacker could submit a specially crafted PPT file that would cause Apache POI to hang indefinitely."], "name": "CVE-2014-9527", "package_state": [{"cpe": "cpe:/a:redhat:jboss_enterprise_bpms_platform", "fix_state": "Affected", "package_name": "apache-poi", "product_name": "Red Hat BPM Suite 6"}, {"cpe": "cpe:/a:redhat:enterprise_linux:7::hypervisor", "fix_state": "Under investigation", "package_name": "jasperreports-server-pro", "product_name": "Red Hat Enterprise Virtualization 3"}, {"cpe": "cpe:/a:redhat:jboss_enterprise_brms_platform:5", "fix_state": "Will not fix", "package_name": "apache-poi", "product_name": "Red Hat JBoss BRMS 5"}, {"cpe": "cpe:/a:redhat:jboss_enterprise_brms_platform:6", "fix_state": "Affected", "package_name": "apache-poi", "product_name": "Red Hat JBoss BRMS 6"}, {"cpe": "cpe:/a:redhat:jboss_fuse_service_works:6", "fix_state": "Affected", "package_name": "apache-poi", "product_name": "Red Hat JBoss Fuse Service Works 6"}, {"cpe": "cpe:/a:redhat:jboss_enterprise_portal_platform:6", "fix_state": "Will not fix", "package_name": "apache-poi", "product_name": "Red Hat JBoss Portal 6"}, {"cpe": "cpe:/a:redhat:network_satellite:5.6", "fix_state": "Under investigation", "package_name": "jakarta-poi", "product_name": "Red Hat Satellite 5.6"}], "public_date": "2014-12-21T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2014-9527\nhttps://nvd.nist.gov/vuln/detail/CVE-2014-9527"], "threat_severity": "Moderate"}