OpenOffice 3.1 - '.slk' Null Pointer Dereference Remote Denial of Service

EDB-ID:

33549

CVE:

N/A




Platform:

Linux

Date:

2010-01-19


source: https://www.securityfocus.com/bid/37857/info

OpenOffice is prone to a remote denial-of-service vulnerability caused by a NULL-pointer dereference.

Attackers can exploit this issue by enticing an unsuspecting victim to open a specially crafted '.slk' file.

Successful exploits will cause the application to crash, denying service to legitimate users. Given the nature of this issue, attackers may also be able to run arbitrary code, but this has not been confirmed.

OpenOffice 3.1.0 and 3.1.1 are vulnerable; other versions may also be affected. 

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/33549.slk