Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:23071
HistoryJan 19, 2010 - 12:00 a.m.

OpenOffice for Windows ".slk" File Parsing Null Pointer Vulnerability

2010-01-1900:00:00
vulners.com
5

Product:

OpenOffice

Tested Vulnerable Versions:

3.1.1 and 3.1.0

Vulnerability:

Null Pointer

Description:

Hellcode Research discovered a null pointer vulnerability in Openoffice for
Windows.

Opening a malformed ".slk" file with Openoffice, causes a crash on "soffice.bin"

PoC:

http://tcc.hellcode.net/sploitz/slk.rar

Credits:
karak0rsan and murderkey from Hellcode Research

The Computer Cheats (TCC)

Urls:

tcc.hellcode.net

forum.hellcode.net