OpenOffice_rtlallocateMemory_Truncation

Overview

» IDS/IPS Signatures

Security Sites

iPolicy Networks Security Advisory

OpenOffice rtlallocateMemory Truncation Vulnerability


Date Discovered:	08/27/2008
Severity:	High
Applications Affected:	OpenOffice.org 2.4.1
Type	Remote
Identifiers	CVE-2008-3282 BID-30866
Vendor	Red Hat

Synopsis

A numeric truncation error has been discovered in the OpenOffice.org memory allocator. An attacker could use this vulnerability to execute arbitrary code or cause the application to crash.

Recommended Action

Updated packages are available at:
https://rhn.redhat.com/errata/RHSA-2008-0835.html

Threat Analysis

OpenOffice.org is the open-source office software suite for word processing, spreadsheets, presentations, graphics, databases and more. It works on all common computers.

A vulnerability has been identified in the rtl_allocateMemory function in sal/rtl/source/alloc_global.c in OpenOffice.org, which could be exploited by attackers to cause a denial of service or compromise a vulnerable system.

This issue is caused by a numeric truncation error in the vulnerable function by persuading a victim to open a specially-crafted OpenOffice document to crash an affected application or execute arbitrary code on 64-bit platforms.

References

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3282
http://www.securityfocus.com/bid/30866

Write-up by: Rajesh Rawal

Security Sites

“iPolicy is one of the most visionary firewall vendors in the firewall Magic Quadrant. Its architecture of a central session processing engine and multiple content blades that are able to block based on signatures, rules and so on is the closest to the network security ideal.”

Greg Young, John Pescatore
Magic Quadrant for Network Firewalls, 2H04, Gartner

| | | | | | | | |