CVE-2007-2834

Currently unrated

Key Information:

Vendor: Oracle
Status: Staroffice; Starsuite; Openoffice
Vendor: CVE Published:; 18 September 2007

Summary

Integer overflow in the TIFF parser in OpenOffice.org (OOo) before 2.3; and Sun StarOffice 6, 7, and 8 Office Suite (StarSuite); allows remote attackers to execute arbitrary code via a TIFF file with crafted values of unspecified length fields, which triggers allocation of an incorrect amount of memory, resulting in a heap-based buffer overflow.

References

http://sunsolve.sun.com/search/document.do?assetkey=1-66-...

vendor-advisoryx_refsource_SUNALERT

http://bugs.gentoo.org/show_bug.cgi?id=192818

x_refsource_CONFIRM

http://secunia.com/advisories/26816

third-party-advisoryx_refsource_SECUNIA

EPSS Score

92% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Sep 18, 2007
Vulnerability Reserved
May 24, 2007