Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: OpenOffice.org issued a WMF code execution fix

From: Juha-Matti Laurio <juha-matti.laurio () netti fi>
Date: Thu, 4 Jan 2007 13:27:24 +0200 (EET)
And the related OpenOffice Isue 70042 document opened on 2nd Oct is located at
http://www.openoffice.org/issues/show_bug.cgi?id=70042

These issues are fixed in version 2.1.

- Juha-Matti


Juha-Matti Laurio <juha-matti.laurio () netti fi> wrote: 

It appears that OpenOffice.org has issued a patch for WMF/EMF heap overflow vulnerability.

Both versions 1.1.x and 2.x are affected to this issue.
According to Bugzilla entry code execution is possible.

More details via
https://rhn.redhat.com/errata/RHSA-2007-0001.html

and
http://blogs.securiteam.com/?p=785
(including more references)

- Juha-Matti


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: