OpenOffice WMF/EMF Integer Overflow Vulnerability
Secunia Advisory: SA23612 Release Date: 2007-01-04
Critical: Highly critical
Impact: System access
Where: From remote
Solution Status: Vendor Patch
A vulnerability has been reported in OpenOffice, which potentially can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to integer overflows within the processor for WMF/EMF files. This can be exploited to cause a heap-based buffer overflow by e.g. tricking a user into opening a specially crafted WMF/EMF file.
Successful exploitation may allow the execution of arbitrary code.
Solution: Apply fixes or update to version 2.1.
Provided and/or discovered by: Reported in an OpenOffice bug.
Original Advisory: http://www.openoffice.org/issues/show_bug.cgi?id=70042