CVE-2008-2237

Heap-based buffer overflow in OpenOffice.org OOo 2.x before 2.4.2 allows remote attackers to execute arbitrary code via a crafted WMF file associated with a StarOffice/StarSuite document...

Heap overflow

Heap-based buffer overflow in OpenOffice.org OOo 2.x before 2.4.2 allows remote attackers to execute arbitrary code via a crafted WMF file associated with a StarOffice/StarSuite document...

CVE-2008-2238

CVE-2008-2238 concerns multiple integer overflows in OpenOffice.org 2.x (EMF/EMR parsing) that can trigger a heap-based buffer overflow, potentially allowing remote code execution via crafted EMF files embedded in StarOffice/StarSuite documents. The connected Nessus advisories (ELSA-2008-0939 and...

CVE-2008-2237

CVE-2008-2237 describes a heap-based overflow in the OpenOffice.org WMF image handling that could allow remote code execution via a crafted WMF file. Affected: OpenOffice.org 2.x up to 2.4.2. The issue also relates to similar integer overflow/heap overflow flaws in the EMF parser (CVE-2008-2238)....

openoffice -- arbitrary code execution vulnerabilities

The OpenOffice Team reports: A security vulnerability with the way OpenOffice 2.x process WMF files may allow a remote unprivileged user who provides a StarOffice/StarSuite document that is opened by a local user to execute arbitrary commands on the system with the privileges of the user running...

OpenOffice HSQLDB Database Engine Unspecified Java Code Execution Vulnerability

Bugtraq ID: 26703 CVE: CVE-2007-4575 OpenOffice is prone to a code-execution vulnerability. Successful exploits allow remote attackers to execute arbitrary Java code in the context of the vulnerable application. Versions prior to OpenOffice 2.3.1 are vulnerable. Sun StarSuite 8 Sun StarOffice 8.0...

CVE-2007-2834

Integer overflow in the TIFF parser in OpenOffice.org OOo before 2.3; and Sun StarOffice 6, 7, and 8 Office Suite StarSuite; allows remote attackers to execute arbitrary code via a TIFF file with crafted values of unspecified length fields, which triggers allocation of an incorrect amount of...

Integer overflow

Integer overflow in the TIFF parser in OpenOffice.org OOo before 2.3; and Sun StarOffice 6, 7, and 8 Office Suite StarSuite; allows remote attackers to execute arbitrary code via a TIFF file with crafted values of unspecified length fields, which triggers allocation of an incorrect amount of...

EUVD-2007-2826

Integer overflow in the TIFF parser in OpenOffice.org OOo before 2.3; and Sun StarOffice 6, 7, and 8 Office Suite StarSuite; allows remote attackers to execute arbitrary code via a TIFF file with crafted values of unspecified length fields, which triggers allocation of an incorrect amount of...

openoffice.org TIFF parsing heap overflow

Integer overflow in the TIFF parser in OpenOffice.org OOo before 2.3; and Sun StarOffice 6, 7, and 8 Office Suite StarSuite; allows remote attackers to execute arbitrary code via a TIFF file with crafted values of unspecified length fields, which triggers allocation of an incorrect amount of...

CVE-2006-5870

CVE-2006-5870 affects OpenOffice.org 2.0.4 and earlier and StarOffice 6–8, enabling user-assisted remote code execution via crafted WMF/EMF files that trigger heap-based overflows during META_ESCAPE and EMR_POLYPOLYGON processing. Connected advisories (e.g., RHSA-2007:0001) confirm a backported f...

CVE-2006-5870

Multiple integer overflows in OpenOffice.org OOo 2.0.4 and earlier, and possibly other versions before 2.1.0; and StarOffice 6 through 8; allow user-assisted remote attackers to execute arbitrary code via a crafted a WMF or b EMF file that triggers heap-based buffer overflows in 1 wmf/winwmf.cxx,...

[VulnWatch] High Risk Vulnerability in the OpenOffice and StarOffice Suites

John Heasman of NGSSoftware has discovered several high risk vulnerabilities in the handling of WMF and EMF graphics formats within the OpenOffice StarOffice suite. The vulnerabilities, three heap overflows, affect OpenOffice 2.1.0 and StarOffice 6, 7 and 8. If an attacker can coax a user into...

security flaw

Multiple integer overflows in OpenOffice.org OOo 2.0.4 and earlier, and possibly other versions before 2.1.0; and StarOffice 6 through 8; allow user-assisted remote attackers to execute arbitrary code via a crafted a WMF or b EMF file that triggers heap-based buffer overflows in 1 wmf/winwmf.cxx,...

CVE-2006-5870

Multiple integer overflows in OpenOffice.org OOo 2.0.4 and earlier, and possibly other versions before 2.1.0; and StarOffice 6 through 8; allow user-assisted remote attackers to execute arbitrary code via a crafted a WMF or b EMF file that triggers heap-based buffer overflows in 1 wmf/winwmf.cxx,...

Solaris 5.10 (sparc) : 120185-19

StarOffice 8 Solaris: Update 14. Date this patch was last updated by Sun : Sep/09/09 %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if !...

Solaris 5.8 (x86) : 120186-19

StarOffice 8 Solarisx86: Update 14. Date this patch was last updated by Sun : Sep/10/09 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if !...

Solaris 5.8 (sparc) : 120185-19

StarOffice 8 Solaris: Update 14. Date this patch was last updated by Sun : Sep/09/09 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if !...

Solaris 5.9 (sparc) : 120185-19

StarOffice 8 Solaris: Update 14. Date this patch was last updated by Sun : Sep/09/09 %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/09/17. C Tenable Network Security, Inc. if !...

CVE-2006-5201

Multiple packages on Sun Solaris, including 1 NSS; 2 Java JDK and JRE 5.0 Update 8 and earlier, SDK and JRE 1.4.x up to 1.4.212, and SDK and JRE 1.3.x up to 1.3.119; 3 JSSE 1.0.303 and earlier; 4 IPSec/IKE; 5 Secure Global Desktop; and 6 StarOffice, when using an RSA key with exponent 3, removes...