SECUNIA ADVISORY ID: SA23612

VERIFY ADVISORY: http://secunia.com/advisories/23612/

CRITICAL: Highly critical

IMPACT: System access

SOFTWARE:
OpenOffice.org 2.x - http://secunia.com/product/6157/
OpenOffice 1.1.x - http://secunia.com/product/302/
OpenOffice 1.0.x - http://secunia.com/product/303/

DESCRIPTION: A vulnerability has been reported in OpenOffice, which potentially can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to integer overflows within the processor for WMF/EMF files. This can be exploited to cause a heap-based buffer overflow by e.g. tricking a user into opening a specially crafted WMF/EMF file. Successful exploitation may allow the execution of arbitrary code.

SOLUTION:
Apply fixes or update to version 2.1.
http://www.openoffice.org/servlets/ReadMsg?list=releases&msgNo=10454

PROVIDED AND/OR DISCOVERED BY: Reported in an OpenOffice bug.

ORIGINAL ADVISORY: http://www.openoffice.org/issues/show_bug.cgi?id=70042