|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
OpenOffice for Windows ".slk" File Parsing Null Pointer Vulnerability
karakorsankara
hotmail.com
Date: Mon Jan 18 2010 - 19:02:05 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Product:
OpenOffice
Tested Vulnerable Versions:
3.1.1 and 3.1.0
Vulnerability:
Null Pointer
Description:
Hellcode Research discovered a null pointer vulnerability in Openoffice for
Windows.
Opening a malformed ".slk" file with Openoffice, causes a crash on "soffice.bin"
PoC:
http://tcc.hellcode.net/sploitz/slk.rar
Credits:
karak0rsan and murderkey from Hellcode Research
The Computer Cheats (TCC)
Urls:
tcc.hellcode.net
forum.hellcode.net
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]