CVE-2007-0238 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-0238
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-0238

Description: Stack-based buffer overflow in filter\starcalc\scflt.cxx in the StarCalc parser in OpenOffice.org (OOo) Office Suite before 2.2, and 1.x before 1.1.5 Patch, allows user-assisted remote attackers to execute arbitrary code via a document with a long Note.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/33112 UBUNTU http://www.ubuntu.com/usn/usn-444-1 SUSE http://lists.suse.com/archive/suse-security-announce/2007-Mar/0007.html SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-102794-1 ST 1017799 SAID Secunia Advisory: SA24810 Secunia Advisory: SA24646 Secunia Advisory: SA24647 Secunia Advisory: SA24676 Secunia Advisory: SA24465 Secunia Advisory: SA24550 Secunia Advisory: SA24906 Secunia Advisory: SA24588 Secunia Advisory: SA24613 REDHAT http://www.redhat.com/support/errata/RHSA-2007-0069.html http://www.redhat.com/support/errata/RHSA-2007-0033.html MISC http://www.ngssoftware.com/advisories/high-risk-vulnerabilities-in-the-openoffice-suite/ MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2007:073 GENTOO http://www.gentoo.org/security/en/glsa/glsa-200704-12.xml DEBIAN http://www.debian.org/security/2007/dsa-1270 CONFIRM http://www.openoffice.org/security/CVE-2007-0238 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/464724/100/0/threaded BID 23067

Return to the previous page.