LibWPD Library Multiple Buffer Overflow Vulnerabilities
BID:23006
Info
LibWPD Library Multiple Buffer Overflow Vulnerabilities
| Bugtraq ID: | 23006 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2007-0002 CVE-2007-1466 |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 16 2007 12:00AM |
| Updated: | Jul 06 2016 02:39PM |
| Credit: | Sean Larsson and an anonymous researcher are credited with the discovery of this issue. |
| Vulnerable: |
Ubuntu Ubuntu Linux 5.10 sparc Ubuntu Ubuntu Linux 5.10 powerpc Ubuntu Ubuntu Linux 5.10 i386 Ubuntu Ubuntu Linux 5.10 amd64 Ubuntu Ubuntu Linux 6.10 sparc Ubuntu Ubuntu Linux 6.10 powerpc Ubuntu Ubuntu Linux 6.10 i386 Ubuntu Ubuntu Linux 6.10 amd64 Ubuntu Ubuntu Linux 6.06 LTS sparc Ubuntu Ubuntu Linux 6.06 LTS powerpc Ubuntu Ubuntu Linux 6.06 LTS i386 Ubuntu Ubuntu Linux 6.06 LTS amd64 Turbolinux FUJI 0 SuSE SUSE Linux Enterprise SDK 10 SuSE SUSE Linux Enterprise Desktop 10 Sun StarSuite 8 Sun StarOffice 8.0 Slackware Linux 10.2 Slackware Linux 11.0 SGI ProPack 3.0 SP6 S.u.S.E. openSUSE 10.2 S.u.S.E. Novell Linux Desktop 9.0 S.u.S.E. Linux Desktop 1.0 S.u.S.E. Linux 9.3 x86 S.u.S.E. Linux 10.1 x86-64 S.u.S.E. Linux 10.1 x86 S.u.S.E. Linux 10.1 ppc S.u.S.E. Linux 10.0 x86 rPath rPath Linux 1 RedHat Enterprise Linux WS 4 RedHat Enterprise Linux WS 3 RedHat Enterprise Linux Optional Productivity Application 5 server RedHat Enterprise Linux ES 4 RedHat Enterprise Linux ES 3 RedHat Enterprise Linux Desktop Workstation 5 client RedHat Desktop 4.0 RedHat Desktop 3.0 Red Hat Fedora Core6 Red Hat Fedora Core5 Red Hat Enterprise Linux Desktop 5 client Red Hat Enterprise Linux AS 4 Red Hat Enterprise Linux AS 3 Pardus Linux 2007.1 Mandriva Linux Mandrake 2007.0 x86_64 Mandriva Linux Mandrake 2007.0 libwpd libwpd library 0.8.6 libwpd libwpd library 0.8.2 libwpd libwpd library 0.8_8-0.8.6 Gentoo Linux Gentoo app-office/openoffice-bin 2.1 Gentoo app-office/openoffice 2.0.3 Foresight Linux Foresight Linux 1.1 Debian Linux 3.1 sparc Debian Linux 3.1 s/390 Debian Linux 3.1 ppc Debian Linux 3.1 mipsel Debian Linux 3.1 mips Debian Linux 3.1 m68k Debian Linux 3.1 ia-64 Debian Linux 3.1 ia-32 Debian Linux 3.1 hppa Debian Linux 3.1 arm Debian Linux 3.1 amd64 Debian Linux 3.1 alpha Debian Linux 3.1 Debian Linux 4.0 sparc Debian Linux 4.0 s/390 Debian Linux 4.0 powerpc Debian Linux 4.0 mipsel Debian Linux 4.0 mips Debian Linux 4.0 m68k Debian Linux 4.0 ia-64 Debian Linux 4.0 ia-32 Debian Linux 4.0 hppa Debian Linux 4.0 arm Debian Linux 4.0 amd64 Debian Linux 4.0 alpha Debian Linux 4.0 |
| Not Vulnerable: |
libwpd libwpd library 0.8.9 Gentoo app-office/openoffice-bin 2.2 Gentoo app-office/openoffice 2.1.0-r1 |
Discussion
LibWPD Library Multiple Buffer Overflow Vulnerabilities
The libwpd library is prone to multiple buffer-overflow vulnerabilities because it fails to adequately check boundaries on user-supplied input.
A successful exploit could let a remote attacker execute arbitrary code in the context of an application using the affected library.
This issue affects libwpd 0.8.7; other versions prior to 0.8.9 may also be affected.
The libwpd library is prone to multiple buffer-overflow vulnerabilities because it fails to adequately check boundaries on user-supplied input.
A successful exploit could let a remote attacker execute arbitrary code in the context of an application using the affected library.
This issue affects libwpd 0.8.7; other versions prior to 0.8.9 may also be affected.
Exploit / POC
LibWPD Library Multiple Buffer Overflow Vulnerabilities
Currently we are not aware of any exploits for these issues. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any exploits for these issues. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
LibWPD Library Multiple Buffer Overflow Vulnerabilities
Solution:
The vendor has released version 0.8.9 to address this issue. Please see the references for details.
libwpd libwpd library 0.8_8-0.8.6
Turbolinux FUJI 0
libwpd libwpd library 0.8.2
libwpd libwpd library 0.8.6
Solution:
The vendor has released version 0.8.9 to address this issue. Please see the references for details.
libwpd libwpd library 0.8_8-0.8.6
-
Mandriva lib64wpd-0.8_8-0.8.6-1.1mdv2007.0.x86_64.rpm
Mandriva Linux 2007.0/X86_64:
http://www.mandriva.com/en/download -
Mandriva lib64wpd-0.8_8-devel-0.8.6-1.1mdv2007.0.x86_64.rpm
Mandriva Linux 2007.0/X86_64:
http://www.mandriva.com/en/download -
Mandriva libwpd-0.8_8-0.8.6-1.1mdv2007.0.i586.rpm
Mandriva Linux 2007.0:
http://www.mandriva.com/en/download -
Mandriva libwpd-0.8_8-devel-0.8.6-1.1mdv2007.0.i586.rpm
Mandriva Linux 2007.0:
http://www.mandriva.com/en/download -
Mandriva libwpd-tools-0.8.6-1.1mdv2007.0.i586.rpm
Mandriva Linux 2007.0:
http://www.mandriva.com/en/download -
Mandriva libwpd-tools-0.8.6-1.1mdv2007.0.x86_64.rpm
Mandriva Linux 2007.0/X86_64:
http://www.mandriva.com/en/download
Turbolinux FUJI 0
-
Turbolinux libwpd-0.8.4-2.i686.rpm
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/ -
Turbolinux libwpd-devel-0.8.4-2.i686.rpm
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/
libwpd libwpd library 0.8.2
-
Cuyahoga libwpd-0.8.9-i486-1_slack10.2.tgz
Slackware 10.2:
ftp://ftp.slackware.com/pub/slackware/slackware-10.2/patches/packages/ libwpd-0.8.9-i486-1_slack10.2.tgz
libwpd libwpd library 0.8.6
-
Cuyahoga libwpd-0.8.9-i486-1_slack11.0.tgz
Slackware 11.0:
ftp://ftp.slackware.com/pub/slackware/slackware-11.0/patches/packages/ libwpd-0.8.9-i486-1_slack11.0.tgz
References
LibWPD Library Multiple Buffer Overflow Vulnerabilities
References:
References:
- 102863: Security Vulnerability in StarOffice 8 May Lead to Heap Overflow and Arb (Sun Microsystems)
- Vendor Homepage (libwpd)
- iDefense Security Advisory 03.16.07: Multiple Vendor libwpd Multiple Buffer Over (iDefense Labs)
- RHSA-2007:0033-4 - openoffice.org security update (RedHat)
- RHSA-2007:0055-5 - libwpd security update (Red Hat)