Computer Security
[EN] securityvulns.ru no-pyccku


OpenOffice integer overflow
Published:19.09.2007
Source:
SecurityVulns ID:8164
Type:client
Threat Level:
6/10
Description:Integer overflow on TIFF images parsing.
Affected:OPENOFFICE : OpenOffice 2.2
CVE:CVE-2007-2834 (Integer overflow in the TIFF parser in OpenOffice.org (OOo) before 2.3; and Sun StarOffice 6, 7, and 8 Office Suite (StarSuite); allows remote attackers to execute arbitrary code via a TIFF file with crafted values of unspecified length fields, which triggers allocation of an incorrect amount of memory, resulting in a heap-based buffer overflow.)
Original documentdocumentIDEFENSE, iDefense Security Advisory 09.17.07: Multiple Vendor OpenOffice TIFF File Parsing Multiple Integer Overflow Vulnerabilities (19.09.2007)
 documentDEBIAN, [SECURITY] [DSA 1375-1] New OpenOffice.org packages fix arbitrary code execution (19.09.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod