LibreOffice, OpenOffice Security Vulnerabilities

OpenOffice < 2.4.2 WMF and EMF File Handling Buffer Overflows

The version of OpenOffice 2.x installed on the remote host is earlier than 2.4.2. Such versions are affected by several issues : Specially crafted WMF files can lead to heap-based overflows and arbitrary code execution (CVE-2008-2237). Specially crafted EMF files can lead to...

OpenOffice < 2.4.2 WMF and EMF File Handling Buffer Overflows

The version of OpenOffice 2.x installed on the remote host is earlier than 2.4.2. Such versions are affected by several issues : Specially crafted WMF files can lead to heap-based overflows and arbitrary code execution (CVE-2008-2237). Specially crafted EMF files can lead to heap-based...

openoffice -- arbitrary code execution vulnerabilities

The OpenOffice Team reports: A security vulnerability with the way OpenOffice 2.x process WMF files may allow a remote unprivileged user who provides a StarOffice/StarSuite document that is opened by a local user to execute arbitrary commands on the system with the...

OpenOffice rtl_allocateMemory Heap Based BOF Vulnerability

OpenOffice is prone to a heap based buffer overflow...

OpenOffice rtl_allocateMemory Heap Based BOF Vulnerability (Linux)

The host has OpenOffice installed which is prone to heap based buffer overflow...

Gentoo Security Advisory GLSA 200504-13 (OpenOffice)

The remote host is missing updates announced in advisory GLSA...

Gentoo Security Advisory GLSA 200603-25 (openoffice openoffice-bin)

The remote host is missing updates announced in advisory GLSA...

Gentoo Security Advisory GLSA 200410-17 (openoffice)

The remote host is missing updates announced in advisory GLSA...

Gentoo Security Advisory GLSA 200712-25 (openoffice openoffice-bin hsqldb)

The remote host is missing updates announced in advisory GLSA...

Gentoo Security Advisory GLSA 200607-12 (OpenOffice.org)

The remote host is missing updates announced in advisory GLSA...

Gentoo Security Advisory GLSA 200701-07 (openoffice)

The remote host is missing updates announced in advisory GLSA...

Gentoo Security Advisory GLSA 200710-24 (openoffice)

The remote host is missing updates announced in advisory GLSA...

Gentoo Security Advisory GLSA 200405-04 (openoffice)

The remote host is missing updates announced in advisory GLSA...

Gentoo Security Advisory GLSA 200807-05 (openoffice openoffice-bin)

The remote host is missing updates announced in advisory GLSA...

Gentoo Security Advisory GLSA 200701-07 (openoffice)

The remote host is missing updates announced in advisory GLSA...

Gentoo Security Advisory GLSA 200805-16 (openoffice openoffice-bin)

The remote host is missing updates announced in advisory GLSA...

Gentoo Security Advisory GLSA 200603-25 (openoffice openoffice-bin)

The remote host is missing updates announced in advisory GLSA...

Gentoo Security Advisory GLSA 200710-24 (openoffice)

The remote host is missing updates announced in advisory GLSA...

Gentoo Security Advisory GLSA 200607-12 (OpenOffice.org)

The remote host is missing updates announced in advisory GLSA...

Gentoo Security Advisory GLSA 200805-16 (openoffice openoffice-bin)

The remote host is missing updates announced in advisory GLSA...

Gentoo Security Advisory GLSA 200504-13 (OpenOffice)

The remote host is missing updates announced in advisory GLSA...

Gentoo Security Advisory GLSA 200405-04 (openoffice)

The remote host is missing updates announced in advisory GLSA...

Gentoo Security Advisory GLSA 200704-12 (OpenOffice.org)

The remote host is missing updates announced in advisory GLSA...

Gentoo Security Advisory GLSA 200410-17 (openoffice)

The remote host is missing updates announced in advisory GLSA...

Gentoo Security Advisory GLSA 200712-25 (openoffice openoffice-bin hsqldb)

The remote host is missing updates announced in advisory GLSA...

Gentoo Security Advisory GLSA 200707-02 (openoffice)

The remote host is missing updates announced in advisory GLSA...

Gentoo Security Advisory GLSA 200704-12 (OpenOffice.org)

The remote host is missing updates announced in advisory GLSA...

Gentoo Security Advisory GLSA 200807-05 (openoffice openoffice-bin)

The remote host is missing updates announced in advisory GLSA...

Gentoo Security Advisory GLSA 200707-02 (openoffice)

The remote host is missing updates announced in advisory GLSA...

OpenOffice.org <= 2.4.1 Vulnerability - Windows

The remote host is probably affected by the vulnerabilities described in CVE-2008-2152 or CVE-2008-3282 on 64-bit...

OpenOffice.org <= 2.4.1 vulnerability (Windows)

The remote host is probably affected by the vulnerabilities described in CVE-2008-2152 or CVE-2008-3282 on 64-bit platform's Impact CVE-2008-2152 Integer overflow in the rtl_allocateMemory function in sal/rtl/source/alloc_global.c in OpenOffice.org (OOo) 2.0 through 2.4 allows...

openoffice -- DOC document heap overflow vulnerability

The remote host is missing an update to the system as announced in the referenced...

openoffice -- document disclosure

The remote host is missing an update to the system as announced in the referenced...

FreeBSD Ports: neon

The remote host is missing an update to the system as announced in the referenced...

FreeBSD Ports: openoffice

The remote host is missing an update to the system as announced in the referenced...

openoffice -- DOC document heap overflow vulnerability

The remote host is missing an update to the system as announced in the referenced...

FreeBSD Ports: neon

The remote host is missing an update to the system as announced in the referenced...

openoffice -- document disclosure

The remote host is missing an update to the system as announced in the referenced...

FreeBSD Ports: openoffice

The remote host is missing an update to the system as announced in the referenced...

OpenOffice < 3.2.0 'rtl_allocateMemory()' RCE Vulnerability - Windows

OpenOffice.Org is prone to a remote code execution (RCE)...

OpenOffice rtl_allocateMemory() Remote Code Execution Vulnerability (Linux)

This host has OpenOffice.Org installed, which is prone to remote code execution...

OpenOffice rtl_allocateMemory() Remote Code Execution Vulnerability (Windows)

This host has OpenOffice.Org installed, which is prone to remote code execution...

CVE-2008-3282

Integer overflow in the rtl_allocateMemory function in sal/rtl/source/alloc_global.c in the memory allocator in OpenOffice.org (OOo) 2.4.1, on 64-bit platforms, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted document,...

Integer overflow

Integer overflow in the rtl_allocateMemory function in sal/rtl/source/alloc_global.c in the memory allocator in OpenOffice.org (OOo) 2.4.1, on 64-bit platforms, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted document,...

OpenOffice 'rtl_allocateMemory()'远程代码执行漏洞

BUGTRAQ ID: 30866 CVE ID: CVE-2008-3282 CNCVE ID：CNCVE-20083282 OpenOffice是一款开源的办公文字处理应用程序。 OpenOffice内存分配中存在一个数字截断错误，远程攻击者可以利用漏洞以应用程序权限执行任意指令。 sal/rtl/source/alloc_global.c中的rtl_allocateMemory()函数接受sal_Size n参数，在64位平台如x86_64上，sal_size定义为无符号长整数，请求的内存块大小之后以size (type...

iDefense Security Advisory 08.12.08: Microsoft Excel Chart AxesSet Invalid Array Index Vulnerability

iDefense Security Advisory 08.12.08 http://labs.idefense.com/intelligence/vulnerabilities/ Aug 12, 2008 I. BACKGROUND Microsoft Excel is the spreadsheet application that is included with Microsoft Corp.'s Office productivity software suite. More information is available at the following website....

GLSA-200807-05 : OpenOffice.org: User-assisted execution of arbitrary code

The remote host is affected by the vulnerability described in GLSA-200807-05 (OpenOffice.org: User-assisted execution of arbitrary code) Sean Larsson (iDefense Labs) reported an integer overflow in the function rtl_allocateMemory() in the file sal/rtl/source/alloc_global.c. Impact : A...

OpenOffice.org: User-assisted execution of arbitrary code

Background OpenOffice.org is an open source office productivity suite, including word processing, spreadsheet, presentation, drawing, data charting, formula editing, and file conversion facilities. Description Sean Larsson (iDefense Labs) reported an integer overflow in the function...

CentOS 4 : openoffice.org2 (CESA-2008:0537)

Updated openoffice.org packages to correct a security issue are now available for Red Hat Enterprise Linux 4 and Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. OpenOffice.org is an office productivity suite that...

openoffice.org2 security update

CentOS Errata and Security Advisory CESA-2008:0537 OpenOffice.org is an office productivity suite that includes desktop applications such as a word processor, spreadsheet, presentation manager, formula editor, and drawing program. Sean Larsson found a heap overflow flaw in the OpenOffice memory...