Launchpad.net

CVE 2009-0200

Integer underflow in OpenOffice.org (OOo) before 3.1.1 and StarOffice/StarSuite 7, 8, and 9 might allow remote attackers to execute arbitrary code via crafted records in the document table of a Word document, leading to a heap-based buffer overflow.

Related bugs and status

CVE-2009-0200 (Candidate) is related to these bugs:

Bug #442740: Update OpenOffice to fix security vulnerabilities

Summary				In	Importance	Status
	442740	Update OpenOffice to fix security vulnerabilities		The Dell Mini Project	Undecided	Confirmed

Bug #882588: LibreOffice/Mozilla integration broken

Summary				In	Importance	Status
	882588	LibreOffice/Mozilla integration broken		libreoffice (Ubuntu)	Undecided	Fix Released
	882588	LibreOffice/Mozilla integration broken		firefox (Ubuntu)	Undecided	Invalid

See the

CVE page on Mitre.org for more details.

References

MISC: http://development.ope...
MISC: http://secunia.com/sec...
BID: 36200
SECUNIA: 35036
VUPEN: ADV-2009-2490
DEBIAN: DSA-1880
SUNALERT: 263508
SUSE: SUSE-SR:2009:015
SECUNIA: 36750
MANDRIVA: MDVSA-2010:035
MANDRIVA: MDVSA-2010:091
SUNALERT: 1020715
MANDRIVA: MDVSA-2010:105
CONFIRM: http://www.openoffice....
GENTOO: GLSA-201408-19
SECUNIA: 60799
OVAL: oval:org.mitre.oval:de...
BUGTRAQ: 20090901 Secunia Resea...