Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitpackHellcode ResearchEXPLOITPACK:42C684361736F217C97E83F9347F86A4
HistoryJan 19, 2010 - 12:00 a.m.

OpenOffice - .slk Parsing Null Pointer

2010-01-1900:00:00
Hellcode Research
9
JSON

OpenOffice - .slk Parsing Null Pointer

Product:

OpenOffice

Tested Vulnerable Versions:

3.1.1 and 3.1.0

Vulnerability:

Null Pointer

Description:

Hellcode Research discovered a null pointer vulnerability in Openoffice for
Windows.

Opening a malformed ".slk" file with Openoffice, causes a crash on
"soffice.bin"

PoC:

https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/11192.rar (slk.rar)

Credits:
karak0rsan and murderkey from Hellcode Research

The Computer Cheats (TCC)

Urls:

tcc.hellcode.net

forum.hellcode.net
JSON