Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Open Office WMF Heap Overflow Patch available. SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Open Office WMF Heap Overflow Patch available.
Juha-Matti alerted us to the availability of the patch for the Open Office WMF Heap Overflow reported here.

The vulnerability involves an overflow in the processor for WMF and EMF files that could cause arbitrary code to be executed if a victim opens a specially crafted WMF/EMF file.

According to Red Hat this is under review as CVE-2006-5870.

Chris

140 Posts
Jan 4th 2007

Sign Up for Free or Log In to start participating in the conversation!