Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

OpenOffice < 2.3 TIFF Parser Multiple Overflows

Medium

Synopsis

The remote Windows host has a program that is affected by multiple buffer overflow vulnerabilities.

Description

The remote Windows host has a program that is affected by multiple buffer overflow vulnerabilities. The remote host is running a version of OpenOffice.org that is affected by multiple integer overflows in its TIFF document parser that can be triggered when parsing tags in TIFF directory entries. If a remote attacker can trick a user into opening a specially-crafted TIFF document, he may be able to leverage this issue to execute arbitrary code on the remote host subject to the user's privileges.

Solution

Upgrade to version 2.3 or higher.