Apache OpenOffice < 3.4.1 Multiple Heap-Based Buffer Overflows
High Nessus Plugin ID 61731
SynopsisThe remote Windows host has a program affected by multiple heap-based buffer overflow vulnerabilities.
DescriptionThe version of Apache OpenOffice installed on the remote host is prior to 3.4.1. It is, therefore, affected by multiple heap-based buffer overflow vulnerabilities related to XML manifest handling :
- An error exists related to handling the XML tag hierarchy.
- A boundary error exists when handling the duplication of certain unspecified XML tags.
- An error exists in the base64 decoder related to XML export actions.
SolutionUpgrade to Apache OpenOffice version 3.4.1 or later.