Vulnerability Note VU#220288
OpenOffice fails to properly process WMF and EMF files
Multiple buffer overflow vulnerabilities exist in the OpenOffice.org office suite. If successfully exploited, these vulnerabilities may allow an attacker to execute arbitrary code on a vulnerable system.
OpenOffice.org is a free office suite that is available for multiple operating systems.
Windows Metafile (WMF) is a vector graphics format that was designed by Microsoft for Windows 3.0. A newer version of WMF, known as Enhanced Metafile (EMF) was designed for 32-bit operating systems.
A remote unauthenticated attacker may be able to execute arbitrary code on a vulnerable system.
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|OpenOffice.org||Affected||-||05 Jan 2007|
|Sun Microsystems, Inc.||Affected||-||06 Jun 2007|
CVSS Metrics (Learn More)
Thanks to the OpenOffice.org team for information used in this report.
This document was written by Ryan Giobbi.
- CVE IDs: CVE-2006-5870
- Date Public: 04 Jan 2007
- Date First Published: 05 Jan 2007
- Date Last Updated: 06 Jun 2007
- Document Revision: 42
If you have feedback, comments, or additional information about this vulnerability, please send us email.