CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
Percentile
98.7%
Integer overflow in the TIFF parser in OpenOffice.org (OOo) before 2.3; and
Sun StarOffice 6, 7, and 8 Office Suite (StarSuite); allows remote
attackers to execute arbitrary code via a TIFF file with crafted values of
unspecified length fields, which triggers allocation of an incorrect amount
of memory, resulting in a heap-based buffer overflow.
Author | Note |
---|---|
jdstrand | upstream says fixed in 2.3.0, but gutsy has 2.3.0~rc1-1ubuntu2. Flagging as needed until can confirm it is not. on 2007/09/27 kees said that calc was taking care of it |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 6.06 | noarch | openoffice.org | < 2.0.2-2ubuntu12.5 | UNKNOWN |
ubuntu | 6.10 | noarch | openoffice.org | < 2.0.4-0ubuntu7 | UNKNOWN |
ubuntu | 7.04 | noarch | openoffice.org | < 2.2.0-1ubuntu5 | UNKNOWN |