First published: Tue Oct 06 2009(Updated: )
Integer overflow in the XPMReader::ReadXPM function in filter.vcl/ixpm/svt_xpmread.cxx in OpenOffice.org (OOo) before 3.2 allows remote attackers to execute arbitrary code via a crafted XPM file that triggers a heap-based buffer overflow.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/openoffice.org2 | <1:2.0.4-5.7.0.6.1.el4_8.3 | 1:2.0.4-5.7.0.6.1.el4_8.3 |
redhat/openoffice.org | <1:2.3.0-6.11.el5_4.4 | 1:2.3.0-6.11.el5_4.4 |
Apache OpenOffice | <3.2.0 | |
Debian Linux | =5.0 | |
Debian Linux | =4.0 | |
Ubuntu | =9.04 | |
Ubuntu | =8.10 | |
Ubuntu | =9.10 | |
Ubuntu | =8.04 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2009-2949 is considered a critical vulnerability as it allows remote attackers to execute arbitrary code.
To fix CVE-2009-2949, update OpenOffice.org to version 3.2 or later, or apply the appropriate patches for affected distributions.
CVE-2009-2949 affects OpenOffice.org versions prior to 3.2, as well as specific legacy versions for Red Hat, Debian, and Ubuntu.
Yes, CVE-2009-2949 can be exploited remotely via crafted XPM files.
CVE-2009-2949 is an integer overflow vulnerability that can lead to a heap-based buffer overflow.