CVE-2005-0941

Name of the Vulnerable Software and Affected Versions OpenOffice versions 1.1.4 and earlier

Description The issue is related to the StgCompObjStream::Load function, which allocates memory based on 16-bit length values but processes memory using 32-bit values. This discrepancy can be exploited by remote attackers using a specially crafted DOC document with certain length values, potentially leading to a denial of service and possibly the execution of arbitrary code due to a heap-based buffer overflow.

Recommendations For OpenOffice versions 1.1.4 and earlier, consider updating to a version that addresses this issue, as the current version may be susceptible to a heap-based buffer overflow. At the moment, there is no information about a newer version that contains a fix for this vulnerability.