Sun StarOffice / StarSuite XML Parsing Multiple Vulnerabilities

Last Update Date: 28 Jan 2011 Release Date: 22 Sep 2009 4540 Views

RISK: Medium Risk

Medium Risk

Multiple vulnerabilities have been identified in Sun StarOffice/StarSuite, which could be exploited by attackers to cause a denial of service or compromise a vulnerable system.

1. User-after-free errors when processing an XML document with specially-crafted Notation or Enumeration attribute types in a DTD definition, which could be exploited to crash an affected application or execute arbitrary code.

2. An error when handling ELEMENT DTD definitions while parsing child content, which could be exploited to cause a denial of service.

Impact

  • Denial of Service
  • Remote Code Execution

System / Technologies affected

  • Sun StarOffice / StarSuite versions 8.x
  • Sun StarOffice / StarSuite versions 9.x

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

Apply patches :
http://sunsolve.sun.com/search/document.do?assetkey=1-66-266088-1

Vulnerability Identifier

Source

Related Link

Share with

Previous

Sun StarOffice / StarSuite Word Document Table Parsing Vulnerabilities

17 Sep 2009 4534 Views

Next

Apple iTunes Playlist Processing Buffer Overflow Vulnerability

23 Sep 2009 4465 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY