Babi

**Name of the Vulnerable Software and Affected Versions** Apache OpenOffice versions 2.x through 3.x before 3.3 **Description** The issue is related to a heap-based buffer overflow in the Impress component of Apache OpenOffice, which can be triggered by a specially crafted Truevision TGA (TARGA) file. This can allow a remote attacker to cause a denial of service, potentially execute arbitrary code, or gain unauthorized access to sensitive data, thus compromising data integrity. **Recommendations** For versions 2.x through 3.x before 3.3, update to version 3.3 or later to resolve the issue. As a temporary workaround, consider avoiding the use of TARGA files in OpenOffice until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** Wireshark versions 1.2.0 through 1.2.4 **Description** A buffer overflow issue exists in the daintree sna read function within the Daintree SNA file parser. This allows remote attackers to potentially cause a denial of service, resulting in a crash, and possibly execute arbitrary code by sending a crafted packet. **Recommendations** For Wireshark versions 1.2.0 through 1.2.4, update to a version that contains a fix for this issue to prevent potential exploitation.

**Name of the Vulnerable Software and Affected Versions** Wireshark versions 0.99.8 through 1.0.5 **Description** The issue allows local users to cause a denial of service, resulting in an application crash, by utilizing format string specifiers in the HOME environment variable. This is a format string vulnerability that affects non-Windows platforms. **Recommendations** For Wireshark versions 0.99.8 through 1.0.5, consider updating to a version outside of this range to resolve the issue. As a temporary workaround, restrict the use of format string specifiers in the HOME environment variable to minimize the risk of exploitation.