CVE-2007-0002 — openoffice.org - several vulnerabilities

Description

Multiple heap-based buffer overflows in WordPerfect Document importer/exporter (libwpd) before 0.8.9 allow user-assisted remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted WordPerfect file in which values to loop counters are not properly handled in the (1) WP3TablesGroup::_readContents and (2) WP5DefinitionGroup_DefineTablesSubGroup::WP5DefinitionGroup_DefineTablesSubGroup functions. NOTE: the integer overflow has been split into CVE-2007-1466.

How to fix CVE-2007-0002

To remediate CVE-2007-0002, upgrade the affected package to a fixed version below.

—upgrade to 0.8.9-1 or later
—upgrade to 0.8.1-1sarge1 or later
—upgrade to 1.1.3-9sarge6 or later

Is CVE-2007-0002 being exploited?

Moderate — EPSS is 9.1%. Track this CVE but it's not at the top of the prioritisation list.

Affected packages (3)

from 0, < 0.8.9-1
from 0, < 0.8.1-1sarge1
from 0, < 1.1.3-9sarge6

References (1)

ADVISORYsecurity-tracker.debian.org/tracker/CVE-2007-0002