SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   StarOffice Vendors:   Sun
(Sun Issues Fix for StarOffice) OpenOffice Integer Overflow in rtl_allocateMemory() Lets Remote Users Execute Arbitrary Code
SecurityTracker Alert ID:  1020276
SecurityTracker URL:  http://securitytracker.com/id/1020276
CVE Reference:   CVE-2008-2152   (Links to External Site)
Date:  Jun 12 2008
Impact:   Execution of arbitrary code via network, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): prior to 8 Update 11
Description:   A vulnerability was reported in OpenOffice.org Office Suite. A remote user can cause arbitrary code to be executed on the target user's system. Sun StarOffice is affected.

A remote user can create a specially crafted Office file that, when loaded by the target user, will trigger an integer overflow in the rtl_allocateMemory() function and execute arbitrary code on the target system. The code will run with the privileges of the target user.

The vendor was notified on May 8, 2008.

Sean Larsson of iDefense Labs reported this vulnerability.

Impact:   A remote user can create a file that, when loaded by the target user, will execute arbitrary code on the target user's system.
Solution:   Sun has issued the following fixes for StarOffice, which is affected by this vulnerability.

SPARC Platform

* StarOffice 8 Update 11 or later
* StarSuite 8 Update 11 or later

x86 Platform

* StarOffice 8 Update 11 or later
* StarSuite 8 Update 11 or later

Linux Platform

* StarOffice 8 Update 11 or later
* StarSuite 8 Update 11 or later

Windows Platform

* StarOffice 8 Update 11 or later
* StarSuite 8 Update 11 or later
* StarSuite 8 Impress Standalone Update 11 or later

StarOffice Updates are available at http://sunsolve.sun.com/show.do?target=patches/xprod-StarOffice&nav=pub-patches

The Sun advisory is available at:

http://sunsolve.sun.com/search/document.do?assetkey=1-66-237944-1

Cause:   Boundary error
Underlying OS:  Linux (Any), UNIX (Solaris - SunOS), Windows (Any)

Message History:   This archive entry is a follow-up to the message listed below.
Jun 10 2008 OpenOffice Integer Overflow in rtl_allocateMemory() Lets Remote Users Execute Arbitrary Code



 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2022, SecurityGlobal.net LLC