Debian DSA-1880-1 Critical: OpenOffice Remote Code Execution Exploits
debian
September 4, 2009
Several vulnerabilities have been discovered in the OpenOffice.org office suite
Summary
Several vulnerabilities have been discovered in the OpenOffice.org
office suite. The Common Vulnerabilities and Exposures project
identifies the following problems:
CVE-2009-0200
Dyon Balding of Secunia Research has discovered a vulnerability,
which can be exploited by opening a specially crafted Microsoft
Word document.
When reading a Microsoft Word document, a bug in the parser of
sprmTDelete records can result in an integer underflow that may
lead to heap-based buffer overflows.
Successful exploitation may allow arbitrary code execution in the
context of the OpenOffice.org process.
CVE-2009-0201
Dyon Balding of Secunia Research has discovered a vulnerability,
which can be exploited by opening a specially crafted Microsoft
Word document.
When reading a Microsoft Word document, a bug in the parser of
sprmTDelete records can result in heap-based buffer overflows.
Successful exploitation may allow arbitrary code execution in the ...
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Package: openoffice.org
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!