Re: [VulnWatch] High Risk Vulnerability in the OpenOffice and StarOffice Suites

To: "NGSSoftware Insight Security Research" <nisr@xxxxxxxxxxxxx>
Subject: Re: [VulnWatch] High Risk Vulnerability in the OpenOffice and StarOffice Suites
From: Florian Weimer <fw@xxxxxxxxxxxxx>
Date: Thu, 04 Jan 2007 21:55:08 +0100
Cc: <bugtraq@xxxxxxxxxxxxxxxxx>, <vulndiscuss@xxxxxxxxxxxxx>
In-reply-to: <0bb101c73029$ecfbdd30$4001a8c0@xxxxxxxxxxxxxxx> (NGSSoftware Insight Security Research's message of "Thu, 4 Jan 2007 17:58:21 -0000")
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <0bb101c73029$ecfbdd30$4001a8c0@xxxxxxxxxxxxxxx>

* NGSSoftware Insight Security Research:

> The vulnerabilities, three heap overflows, affect OpenOffice 2.1.0 and

> http://download.openoffice.org/2.1.0/index.html

As far as I can tell, there is no version newer than 2.1.0 available
at the web site.  According to uncorroborated, version 2.1.0 is not
affected.

Would anyone please clarify the situation?  Thanks.

Follow-Ups:
- Re: [VulnWatch] High Risk Vulnerability in the OpenOffice and StarOffice Suites
  - From: David Litchfield

References:
- High Risk Vulnerability in the OpenOffice and StarOffice Suites
  - From: NGSSoftware Insight Security Research

Prev by Date: [ GLSA 200701-03 ] Mozilla Thunderbird: Multiple vulnerabilities
Next by Date: Re: [WEB SECURITY] Universal XSS with PDF files: highly dangerous
Previous by thread: High Risk Vulnerability in the OpenOffice and StarOffice Suites
Next by thread: Re: [VulnWatch] High Risk Vulnerability in the OpenOffice and StarOffice Suites
Index(es):
- Date
- Thread