OpenOffice < 2.4.2 WMF and EMF File Handling Buffer Overflows
High Nessus Plugin ID 34510
SynopsisThe remote Windows host has a program affected by multiple buffer overflows.
DescriptionThe version of OpenOffice 2.x installed on the remote host is earlier than 2.4.2. Such versions are affected by several issues :
- Specially crafted WMF files can lead to heap-based overflows and arbitrary code execution (CVE-2008-2237).
- Specially crafted EMF files can lead to heap-based overflows and arbitrary code execution (CVE-2008-2238).
SolutionUpgrade to OpenOffice version 2.4.2 or later.