Threat Level: green Handler on Duty: Russ McRee

SANS ISC InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Open Office WMF Heap Overflow Patch available.

Published: 2007-01-04
Last Updated: 2007-01-04 16:20:21 UTC
by Chris Carboni (Version: 1)
0 comment(s)
Juha-Matti alerted us to the availability of the patch for the Open Office WMF Heap Overflow reported here.

The vulnerability involves an overflow in the processor for WMF and EMF files that could cause arbitrary code to be executed if a victim opens a specially crafted WMF/EMF file.

According to Red Hat this is under review as CVE-2006-5870.

Keywords:
0 comment(s)
Diary Archives