Integer overflow in OpenOffice.org prior to 2.4 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via an EMF file with a crafted EMR_STRETCHBLT record, which triggers a heap-based buffer overflow.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
openoffice openoffice.org 2.1 |
||
openoffice openoffice.org 2.2 |
||
openoffice openoffice.org 2.3.1 |
||
openoffice openoffice.org 2.0.3 |
||
openoffice openoffice.org 2.2.1 |
||
openoffice openoffice.org 2.3 |