Full Disclosure: Re: OpenOffice.org issued a WMF code execution fix

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Full Disclosure mailing list archives

Re: OpenOffice.org issued a WMF code execution fix

From: Juha-Matti Laurio <juha-matti.laurio () netti fi>
Date: Thu, 4 Jan 2007 13:27:24 +0200 (EET)

And the related OpenOffice Isue 70042 document opened on 2nd Oct is located at
http://www.openoffice.org/issues/show_bug.cgi?id=70042

These issues are fixed in version 2.1.

- Juha-Matti


Juha-Matti Laurio <juha-matti.laurio () netti fi> wrote:

It appears that OpenOffice.org has issued a patch for WMF/EMF heap overflow vulnerability.

Both versions 1.1.x and 2.x are affected to this issue.
According to Bugzilla entry code execution is possible.

More details via
https://rhn.redhat.com/errata/RHSA-2007-0001.html

and
http://blogs.securiteam.com/?p=785
(including more references)

- Juha-Matti


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

OpenOffice.org issued a WMF code execution fix Juha-Matti Laurio (Jan 03)
- <Possible follow-ups>
- Re: OpenOffice.org issued a WMF code execution fix Juha-Matti Laurio (Jan 04)