Unrated severityNVD Advisory· Published Jun 12, 2007· Updated Apr 23, 2026

CVE-2007-0245

Description

Heap-based buffer overflow in OpenOffice.org (OOo) 2.2.1 and earlier allows remote attackers to execute arbitrary code via a RTF file with a crafted prtdata tag with a length parameter inconsistency, which causes vtable entries to be overwritten.

Affected products

Openoffice/Openoffice
cpe:2.3:a:openoffice:openoffice:*:*:*:*:*:*:*:*
Range: <=2.2.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.debian.org/security/2007/dsa-1307nvdPatch
secunia.com/advisories/25648nvdVendor Advisory
secunia.com/advisories/25650nvdVendor Advisory
secunia.com/advisories/25673nvdVendor Advisory
secunia.com/advisories/25705nvdVendor Advisory
secunia.com/advisories/25862nvdVendor Advisory
secunia.com/advisories/25894nvdVendor Advisory
secunia.com/advisories/25905nvdVendor Advisory
secunia.com/advisories/26010nvdVendor Advisory
secunia.com/advisories/26022nvdVendor Advisory
secunia.com/advisories/26476nvdVendor Advisory
www.vupen.com/english/advisories/2007/2166nvdVendor Advisory
www.vupen.com/english/advisories/2007/2229nvdVendor Advisory
patches.sgi.com/support/free/security/advisories/20070602-01-P.ascnvd
osvdb.org/35378nvd
sunsolve.sun.com/search/document.donvd
sw.openoffice.org/source/browse/sw/sw/source/filter/rtf/swparrtf.cxxnvd
www.gentoo.org/security/en/glsa/glsa-200707-02.xmlnvd
www.mandriva.com/security/advisoriesnvd
www.novell.com/linux/security/advisories/2007_37_openoffice.htmlnvd
www.redhat.com/support/errata/RHSA-2007-0406.htmlnvd
www.securityfocus.com/archive/1/471274/100/0/threadednvd
www.securityfocus.com/bid/24450nvd
www.securitytracker.com/idnvd
www.ubuntu.com/usn/usn-482-1nvd
exchange.xforce.ibmcloud.com/vulnerabilities/34843nvd
issues.rpath.com/browse/RPL-1570nvd
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10002nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.010
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000