CVE-2010-3453

Name of the Vulnerable Software and Affected Versions OpenOffice versions 2.x through 3.x before 3.3 OpenOffice version 3.x before 3.3

Description The issue is related to the incorrect handling of an unspecified number of list levels in user-defined list styles in WW8 data in a Microsoft Word document. This can be exploited by a remote attacker to gain access to confidential data, compromise data integrity, and cause a denial of service, potentially leading to application crashes or the execution of arbitrary code through a crafted .DOC file that triggers an out-of-bounds write.

Recommendations For OpenOffice versions 2.x through 3.x before 3.3, update to version 3.3 or later to resolve the issue. For OpenOffice version 3.x before 3.3, update to version 3.3 or later to resolve the issue. As a temporary workaround, consider avoiding the use of user-defined list styles in WW8 data until a patch is available.