OpenOffice Multiple Vulnerabilities
Last Update Date:
28 Jan 2011
Release Date:
18 Apr 2008
5555
Views
RISK: Medium Risk
Multiple vulnerabilities have been identified in OpenOffice.org, which could be exploited by attackers to cause a denial of service or compromise an affected system. These issues are caused by heap overflow and corruption errors when processing specially crafted ODF text documents with XForms, or when handling malformed Quattro Pro, EMF or OLE files, which could be exploited by attackers to crash an affected application or execute arbitrary code by tricking a user into opening a specially crafted document.
Impact
- Denial of Service
- Remote Code Execution
System / Technologies affected
- OpenOffice.org versions prior to 2.4
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
Upgrade to OpenOffice.org version 2.4 :
http://download.openoffice.org/index.html
Vulnerability Identifier
Source
Related Link
- http://www.frsirt.com/english/advisories/2008/1250
- http://secunia.com/advisories/29846/
- http://www.openoffice.org/security/cves/CVE-2007-4770.html
- http://www.openoffice.org/security/cves/CVE-2007-5745.html
- http://www.openoffice.org/security/cves/CVE-2007-5746.html
- http://www.openoffice.org/security/cves/CVE-2008-0320.html
Share with