OpenOffice WMF/EMF Integer Overflow Vulnerability Date: Thursday, January 04, 2007 @ 11:40:46 CST Topic: Security SECUNIA ADVISORY ID: SA23612 VERIFY ADVISORY: http://secunia.com/advisories/23612/ CRITICAL: Highly critical IMPACT: System access SOFTWARE: OpenOffice.org 2.x - http://secunia.com/product/6157/ OpenOffice 1.1.x - http://secunia.com/product/302/ OpenOffice 1.0.x - http://secunia.com/product/303/ DESCRIPTION: A vulnerability has been reported in OpenOffice, which potentially can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to integer overflows within the processor for WMF/EMF files. This can be exploited to cause a heap-based buffer overflow by e.g. tricking a user into opening a specially crafted WMF/EMF file. Successful exploitation may allow the execution of arbitrary code. SOLUTION: Apply fixes or update to version 2.1. http://www.openoffice.org/servlets/ReadMsg?list=releases&msgNo=10454 PROVIDED AND/OR DISCOVERED BY: Reported in an OpenOffice bug. ORIGINAL ADVISORY: http://www.openoffice.org/issues/show_bug.cgi?id=70042 This article comes from Ravens PHP Scripts https://www.ravenphpscripts.com The URL for this story is: https://www.ravenphpscripts.com/modules.php?name=News&file=article&sid=2619