openoffice -- DOC document heap overflow vulnerability

2005-04-1100:00:00

vuxml.freebsd.org

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.039 Low

EPSS

Percentile

91.9%

JSON

AD-LAB reports that a heap-based buffer overflow
vulnerability exists in OpenOffice’s handling of DOC
documents. When reading a DOC document 16 bit from a 32 bit
integer is used for memory allocation, but the full 32 bit
is used for further processing of the document. This can
allow an attacker to crash OpenOffice, or potentially
execute arbitrary code as the user running OpenOffice, by
tricking an user into opening a specially crafted DOC
document.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchopenoffice< 1.1.4_2UNKNOWN
FreeBSDanynoarchar-openoffice< 1.1.4_2UNKNOWN
FreeBSDanynoarchca-openoffice< 1.1.4_2UNKNOWN
FreeBSDanynoarchcs-openoffice< 1.1.4_2UNKNOWN
FreeBSDanynoarchde-openoffice< 1.1.4_2UNKNOWN
FreeBSDanynoarchdk-openoffice< 1.1.4_2UNKNOWN
FreeBSDanynoarchel-openoffice< 1.1.4_2UNKNOWN
FreeBSDanynoarches-openoffice< 1.1.4_2UNKNOWN
FreeBSDanynoarchet-openoffice< 1.1.4_2UNKNOWN
FreeBSDanynoarchfi-openoffice< 1.1.4_2UNKNOWN

OS	Version	Architecture	Package	Version	Filename
FreeBSD	any	noarch	openoffice	< 1.1.4_2	UNKNOWN
FreeBSD	any	noarch	ar-openoffice	< 1.1.4_2	UNKNOWN
FreeBSD	any	noarch	ca-openoffice	< 1.1.4_2	UNKNOWN
FreeBSD	any	noarch	cs-openoffice	< 1.1.4_2	UNKNOWN
FreeBSD	any	noarch	de-openoffice	< 1.1.4_2	UNKNOWN
FreeBSD	any	noarch	dk-openoffice	< 1.1.4_2	UNKNOWN
FreeBSD	any	noarch	el-openoffice	< 1.1.4_2	UNKNOWN
FreeBSD	any	noarch	es-openoffice	< 1.1.4_2	UNKNOWN
FreeBSD	any	noarch	et-openoffice	< 1.1.4_2	UNKNOWN
FreeBSD	any	noarch	fi-openoffice	< 1.1.4_2	UNKNOWN