Secunia
Login
|
|
CVE Reference: CVE-2005-0941 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2005-0941 |
|
|
Description: The StgCompObjStream::Load function in OpenOffice.org OpenOffice 1.1.4 and earlier allocates memory based on 16 bit length values, but process memory using 32 bit values, which allows remote attackers to cause a denial of service and possibly execute arbitrary code via a DOC document with certain length values, which leads to a heap-based buffer overflow. |
|
|
CVE Status: Candidate |
|
|
References: SUSE http://www.novell.com/linux/security/advisories/2005_21_sr.html SAID Secunia Advisory: SA17027 REDHAT http://www.redhat.com/support/errata/RHSA-2005-375.html OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:9106 GENTOO http://www.gentoo.org/security/en/glsa/glsa-200504-13.xml CONFIRM http://www.openoffice.org/issues/show_bug.cgi?id=46388 BUGTRAQ http://www.securityfocus.com/archive/1/395516 BID 13092 |
|
| Return to the previous page. |
