OpenOffice Remote Word File Integer Overflow Vulnerability
BID:21618
Info
OpenOffice Remote Word File Integer Overflow Vulnerability
| Bugtraq ID: | 21618 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Dec 15 2006 12:00AM |
| Updated: | Dec 18 2006 03:48PM |
| Credit: | This issue was originally reported in OpenOffice by [email protected]. |
| Vulnerable: |
OpenOffice OpenOffice 2.1 |
| Not Vulnerable: | |
Discussion
OpenOffice Remote Word File Integer Overflow Vulnerability
OpenOffice is prone to a remote integer-overflow vulnerability.
Successfully exploiting this issue allows remote attackers to crash affected applications, denying service to legitimate users. Reportedly this issue may also be exploited to execute arbitrary machine code.
OpenOffice 2.1 is vulnerable to this issue; other versions may also be affected.
OpenOffice is prone to a remote integer-overflow vulnerability.
Successfully exploiting this issue allows remote attackers to crash affected applications, denying service to legitimate users. Reportedly this issue may also be exploited to execute arbitrary machine code.
OpenOffice 2.1 is vulnerable to this issue; other versions may also be affected.
Exploit / POC
Solution / Fix
OpenOffice Remote Word File Integer Overflow Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].
References
OpenOffice Remote Word File Integer Overflow Vulnerability
References:
References:
- OpenOffice Homepage (OpenOffice)
- Flaw in OpenOffice.org 2.1: OpenOffice 2.1 is vulnerable to MS Word 0 day vulner ([email protected])
- Re: Flaw in OpenOffice.org 2.1: OpenOffice 2.1 is vulnerable to MS Word 0 day vu (Josh Bressers
- Re: Re: Flaw in OpenOffice.org 2.1: OpenOffice 2.1 is vulnerable to MS Word 0 da ([email protected])