The Word processor in OpenOffice.org 1.1.2 up to and including 1.1.5 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted (1) .doc, (2) .wri, or (3) .rtf Word 97 file that triggers memory corruption, as exploited in the wild in December 2008, as demonstrated by 2008-crash.doc.rar, and a similar issue to CVE-2008-4841.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
openoffice openoffice.org 1.1.5 |
||
openoffice openoffice.org 1.1.4 |
||
openoffice openoffice.org 1.1.3 |
||
openoffice openoffice.org 1.1.2 |