CVE-2010-4253

Name of the Vulnerable Software and Affected Versions OpenOffice.org (OOo) versions 2.x through 3.x before 3.3

Description The issue is related to a heap-based buffer overflow in Impress, which can be triggered by a crafted PNG file in an ODF or Microsoft Office document. This can cause a denial of service, resulting in an application crash, or possibly allow the execution of arbitrary code. The vulnerability can be exploited by a remote attacker, potentially leading to unauthorized access to confidential data, disruption of service, or impact on data integrity.

Recommendations For OpenOffice.org (OOo) versions 2.x through 3.x before 3.3, update to version 3.3 or later to resolve the issue. As a temporary workaround, consider avoiding the use of crafted PNG files in ODF or Microsoft Office documents until a patch is applied. Restrict access to potentially vulnerable documents to minimize the risk of exploitation.