KOffice.PPT.Files.Integer.Overflow

description-logoDescription

It indicates a possible exploit of an integer overflow in KOffice that may allow user-assisted remote attackers to execute arbitrary code via a crafted PPT file.

affected-products-logoAffected Products

Ubuntu Ubuntu Linux 5.10 sparc
Ubuntu Ubuntu Linux 5.10 powerpc
Ubuntu Ubuntu Linux 5.10 i386
Ubuntu Ubuntu Linux 5.10 amd64
Slackware Linux 10.2
S.u.S.E. UnitedLinux 1.0
S.u.S.E. SuSE Linux Standard Server 8.0
S.u.S.E. SuSE Linux School Server for i386
S.u.S.E. SUSE LINUX Retail Solution 8.0
S.u.S.E. SuSE Linux Openexchange Server 4.0
S.u.S.E. SUSE Linux Enterprise Server 10
S.u.S.E. SUSE Linux Enterprise Desktop 10
S.u.S.E. SUSE CORE 9 for x86
S.u.S.E. SLE SDK 9
S.u.S.E. SLE SDK 10
S.u.S.E. Open-Enterprise-Server 9.0
S.u.S.E. Open-Enterprise-Server 1
S.u.S.E. Open-Enterprise-Server 0
S.u.S.E. Novell Linux POS 9
S.u.S.E. Novell Linux Desktop 9.0
S.u.S.E. Novell Linux Desktop 1.0
S.u.S.E. Novell Linux Desktop 9
S.u.S.E. Linux Professional 10.0 OSS
S.u.S.E. Linux Professional 10.0
S.u.S.E. Linux Professional 9.3 x86_64
S.u.S.E. Linux Professional 9.3
S.u.S.E. Linux Professional 10.1
S.u.S.E. Linux Personal 10.0 OSS
S.u.S.E. Linux Personal 9.3 x86_64
S.u.S.E. Linux Personal 9.3
S.u.S.E. Linux Personal 10.1
S.u.S.E. Linux Openexchange Server
S.u.S.E. Linux Office Server
S.u.S.E. Linux Enterprise Server SDK 9
S.u.S.E. Linux Enterprise Server for S/390 9.0
S.u.S.E. Linux Enterprise Server for S/390
S.u.S.E. Linux Enterprise Server 9
S.u.S.E. Linux Enterprise Server 10
S.u.S.E. Linux Enterprise SDK 10
S.u.S.E. Linux Desktop 1.0
S.u.S.E. Linux Desktop 10
S.u.S.E. Linux Database Server
S.u.S.E. Linux Connectivity Server
MandrakeSoft Linux Mandrake 2007.0 x86_64
MandrakeSoft Linux Mandrake 2007.0
KDE KOffice 1.6
KDE KOffice 1.4.2
KDE KOffice 1.4.1
KDE KOffice 1.4
KDE KOffice 1.3.5
KDE KOffice 1.3.4
KDE KOffice 1.3.3
KDE KOffice 1.3.2
KDE KOffice 1.3.1
KDE KOffice 1.3 beta3
KDE KOffice 1.3 beta2
KDE KOffice 1.3 beta1
KDE KOffice 1.3
KDE KOffice 1.2.92
KDE KOffice 1.2.1
KDE KOffice 1.2
Gentoo Linux

Impact logoImpact

Execute arbitrary code in the context of affected application

recomended-action-logoRecommended Actions

The vendor has released version 1.6.1 to address this issue.
KDE KOffice 1.4
* KDE post-koffice-1.6.0.diff
ftp://ftp.kde.org/pub/kde/security_patches
KDE KOffice 1.4.1
* KDE post-koffice-1.6.0.diff
ftp://ftp.kde.org/pub/kde/security_patches
KDE KOffice 1.4.2
* KDE post-koffice-1.6.0.diff
ftp://ftp.kde.org/pub/kde/security_patches
KDE KOffice 1.6
* KDE post-koffice-1.6.0.diff
ftp://ftp.kde.org/pub/kde/security_patches

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)