Revision Date: | 2013-04-29 | Version: | 11 | Title: | Multiple integer overflows in OpenOffice.org (OOo) 2.0.4 and earlier, and possibly other versions before 2.1.0; and StarOffice 6 through 8; allow user-assisted remote attackers to execute arbitrary code via a crafted (a) WMF or (b) EMF file that triggers heap-based buffer overflows in (1) wmf/winwmf.cxx, during processing of META_ESCAPE records; and wmf/enhwmf.cxx, during processing of (2) EMR_POLYPOLYGON and (3) EMR_POLYPOLYGON16 records. | Description: | Multiple integer overflows in OpenOffice.org (OOo) 2.0.4 and earlier, and possibly other versions before 2.1.0; and StarOffice 6 through 8; allow user-assisted remote attackers to execute arbitrary code via a crafted (a) WMF or (b) EMF file that triggers heap-based buffer overflows in (1) wmf/winwmf.cxx, during processing of META_ESCAPE records; and wmf/enhwmf.cxx, during processing of (2) EMR_POLYPOLYGON and (3) EMR_POLYPOLYGON16 records. | Family: | unix | Class: | vulnerability | Status: | ACCEPTED | Reference(s): | CVE-2006-5870
| Platform(s): | CentOS Linux 3 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 3 Red Hat Enterprise Linux 4
| Product(s): | | Definition Synopsis | OS Section: RHEL3, CentOS3 RHEL3 or CentOS3
The operating system installed on the system is Red Hat Enterprise Linux 3
OR CentOS Linux 3.x
AND Configuration section
openoffice.org-libs is earlier than 0:1.1.2-35.2.0.EL3
OR openoffice.org is earlier than 0:1.1.2-35.2.0.EL3
OR openoffice.org-i18n is earlier than 0:1.1.2-35.2.0.EL3
OR OS Section: RHEL4, CentOS4, Oracle Linux 4
RHEL4, CentOS4 or Oracle Linux 4
The operating system installed on the system is Red Hat Enterprise Linux 4
OR CentOS Linux 4.x
OR Oracle Linux 4.x
AND Configuration section
openoffice.org-libs is earlier than 0:1.1.5-6.6.0.EL4
OR openoffice.org is earlier than 0:1.1.5-6.6.0.EL4
OR openoffice.org-kde is earlier than 0:1.1.5-6.6.0.EL4
OR openoffice.org-i18n is earlier than 0:1.1.5-6.6.0.EL4
|
|