CVE-2007-5745
Published: 17 April 2008
Multiple heap-based buffer overflows in OpenOffice.org before 2.4 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Quattro Pro (QPRO) file with crafted (1) Attribute and (2) Font Description records.
Priority
Status
Package | Release | Status |
---|---|---|
hsqldb Launchpad, Ubuntu, Debian |
dapper |
Not vulnerable
|
feisty |
Not vulnerable
|
|
gutsy |
Not vulnerable
|
|
hardy |
Not vulnerable
|
|
upstream |
Not vulnerable
|
|
openoffice.org Launchpad, Ubuntu, Debian |
dapper |
Released
(2.0.2-2ubuntu12.6)
|
feisty |
Released
(2.2.0-1ubuntu6)
|
|
gutsy |
Released
(1:2.3.0-1ubuntu5.4)
|
|
hardy |
Not vulnerable
(1:2.4.0-3ubuntu6)
|
|
upstream |
Released
(2.4)
|
|
openoffice.org-amd64 Launchpad, Ubuntu, Debian |
dapper |
Released
(2.0.2-2ubuntu12.6-1)
|
upstream |
Needs triage
|