CVE-2007-0245 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-0245
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-0245

Description: Heap-based buffer overflow in OpenOffice.org (OOo) 2.2.1 and earlier allows remote attackers to execute arbitrary code via a RTF file with a crafted prtdata tag with a length parameter inconsistency, which causes vtable entries to be overwritten.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/34843 UBUNTU http://www.ubuntu.com/usn/usn-482-1 SUSE http://www.novell.com/linux/security/advisories/2007_37_openoffice.html SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-102917-1 ST 1018239 SGI SAID Secunia Advisory: SA25705 Secunia Advisory: SA25673 Secunia Advisory: SA25648 Secunia Advisory: SA25650 Secunia Advisory: SA25862 Secunia Advisory: SA25894 Secunia Advisory: SA25905 Secunia Advisory: SA26010 Secunia Advisory: SA26022 Secunia Advisory: SA26476 REDHAT http://www.redhat.com/support/errata/RHSA-2007-0406.html MANDRIVA http://frontal2.mandriva.com/security/advisories?name=MDKSA-2007:144 GENTOO http://www.gentoo.org/security/en/glsa/glsa-200707-02.xml DEBIAN http://www.debian.org/security/2007/dsa-1307 CONFIRM http://sw.openoffice.org/source/browse/sw/sw/source/filter/rtf/swparrtf.cxx?rev=1.67 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/471274/100/0/threaded BID 24450

Return to the previous page.