2007-09-18 23:17:00 2018-10-16 18:45:43

Integer overflow in the TIFF parser in OpenOffice.org (OOo) before 2.3; and Sun StarOffice 6, 7, and 8 Office Suite (StarSuite); allows remote attackers to execute arbitrary code via a TIFF file with crafted values of unspecified length fields, which triggers allocation of an incorrect amount of memory, resulting in a heap-based buffer overflow.

Vector

NETWORK

Complexity

MEDIUM

Authentication

NONE

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE
Fedora Core 6 Redhat Linux 3.0 Desktop (not an official CPE) Redhat Linux 4.0 Desktop (not an official CPE) Redhat Enterprise linux 5.0 Client (not an official CPE) Redhat Enterprise linux 4.0 Ws (not an official CPE) Redhat Enterprise linux 4.0 Es (not an official CPE) Redhat Enterprise linux 4.0 As (not an official CPE) Redhat Enterprise linux 3.0 Ws (not an official CPE) Redhat Enterprise linux 3.0 Es (not an official CPE) Redhat Enterprise linux 3.0 As (not an official CPE) Debian Debian linux 4.0 Sparc (not an official CPE) Debian Debian linux 4.0 S-390 (not an official CPE) Debian Debian linux 4.0 Powerpc (not an official CPE) Debian Debian linux 4.0 Mipsel (not an official CPE) Debian Debian linux 4.0 Mips (not an official CPE) Debian Debian linux 4.0 M68k (not an official CPE) Debian Debian linux 4.0 Ia-64 (not an official CPE) Debian Debian linux 4.0 Ia-32 (not an official CPE) Debian Debian linux 4.0 Hppa (not an official CPE) Debian Debian linux 4.0 Arm (not an official CPE) Debian Debian linux 4.0 Amd64 (not an official CPE) Debian Debian linux 4.0 Alpha (not an official CPE) Debian GNU/Linux 4.0 Debian Debian linux 3.1 Sparc (not an official CPE) Debian Debian linux 3.1 S-390 (not an official CPE) Debian Debian linux 3.1 Ppc (not an official CPE) Debian Debian linux 3.1 Mipsel (not an official CPE) Debian Debian linux 3.1 Mips (not an official CPE) Debian Debian linux 3.1 M68k (not an official CPE) Debian Debian linux 3.1 Ia-64 (not an official CPE) Debian Debian linux 3.1 Ia-32 (not an official CPE) Debian Debian linux 3.1 Hppa (not an official CPE) Debian Debian linux 3.1 Arm (not an official CPE) Debian Debian linux 3.1 Amd64 (not an official CPE) Debian Debian linux 3.1 Alpha (not an official CPE) Debian Debian Linux 3.1