Intrusion Prevention

OpenOffice.EMF.File.EMR_BITBLT.Record.Integer.Overflow

Description

This indicates an attack attempt against an integer-overflow vulnerability in OpenOffice.org.
The vulnerability is caused by the way OpenOffice parses EMF images. A remote attacker may exploit this vulnerability by enticing a user to open a malformed EMF file, causing a denial-of-service condition or execution of arbitrary code.

Affected Products

OpenOffice.org 2.0.3
OpenOffice.org 2.1
OpenOffice.org 2.2
OpenOffice.org 2.2.1
OpenOffice.org 2.3
OpenOffice.org 2.3.1

Impact

System Compromise

Recommended Actions

Upgrade to the latest version of OpenOffice.org (2.4 or later):
http://download.openoffice.org/.

CVE References

CVE-2007-5746