CVE-2007-5747

Name of the Vulnerable Software and Affected Versions OpenOffice versions prior to 2.4

Description The issue is related to an integer underflow in OpenOffice, which can be exploited by a remote attacker to gain access to confidential data, compromise data integrity, and cause a denial of service. This can be achieved through a crafted Quattro Pro (QPRO) file that triggers an excessive loop and a stack-based buffer overflow, potentially allowing the execution of arbitrary code.

Recommendations For OpenOffice versions prior to 2.4, update to version 2.4 or later to resolve the issue. As a temporary workaround, consider avoiding the use of Quattro Pro (QPRO) files until the issue is resolved. Restrict access to sensitive data and implement additional security measures to minimize the risk of exploitation.