PT-2007-4144 · Apache+2 · Openoffice.Org+2
Published
2007-09-18
·
Updated
2022-02-07
·
CVE-2007-2834
CVSS v2.0
9.3
High
| Vector | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
OpenOffice.org versions prior to 2.3
Sun StarOffice versions 6, 7, and 8
Description
The issue is related to an integer overflow in the TIFF parser, which allows remote attackers to execute arbitrary code via a TIFF file with crafted values of unspecified length fields. This triggers allocation of an incorrect amount of memory, resulting in a heap-based buffer overflow.
Recommendations
For OpenOffice.org versions prior to 2.3, update to version 2.3 or later to resolve the issue.
For Sun StarOffice versions 6, 7, and 8, consider upgrading to a newer version that is not affected by this issue, as these versions are vulnerable.
Fix
RCE
Integer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Openoffice.Org
Red Hat
Staroffice