OpenOffice.org Releases Two Security Bulletins

Wed, Oct 29 2008 14:44 Don

OpenOffice.org Releases Two Security Bulletins

OpenOffice.org has released bulletins to address two vulnerabilities. These bulletins address heap-based buffer overflow vulnerabilities in the processing of WMF and EMF files. Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code.

US-CERT encourages users and administrators to review the following OpenOffice.org security bulletins and apply the resolutions provided by the vendor:

Manipulated WMF files can lead to heap overflows and arbitrary code execution.

Manipulated EMF files can lead to heap overflows and arbitrary code execution.

http://www.us-cert.gov/current/index.html#openoffice_releases_two_security_bulletins

Filed under: Advisories / Bulletins