-
OpenOffice WMF/EMF Integer Overflow Vulnerability
OpenOffice WMF/EMF Integer Overflow Vulnerability
Secunia Advisory: SA23612 Release Date: 2007-01-04
Critical: Highly critical
Impact: System access
Where: From remote
Solution Status: Vendor Patch
Software:
OpenOffice 1.0.x
OpenOffice 1.1.x
OpenOffice.org 2.x
Description:
A vulnerability has been reported in OpenOffice, which potentially can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to integer overflows within the processor for WMF/EMF files. This can be exploited to cause a heap-based buffer overflow by e.g. tricking a user into opening a specially crafted WMF/EMF file.
Successful exploitation may allow the execution of arbitrary code.
Solution: Apply fixes or update to version 2.1.
http://www.openoffice.org/servlets/R...es&msgNo=10454
Provided and/or discovered by: Reported in an OpenOffice bug.
Original Advisory: http://www.openoffice.org/issues/show_bug.cgi?id=70042
secunia.com
-
-
Будь в курсе!
Будь в курсе!
Надоело быть жертвой? Стань профи по информационной безопасности, получай самую свежую информацию об угрозах и средствах защиты от ведущего российского аналитического центра Anti-Malware.ru:
-
Junior Member
- Вес репутации
- 67
они что кодом Микрософта пользуются? %)
есть два уровня безопасности - high и нехай