Unrated severityNVD Advisory· Published Sep 8, 2009· Updated Apr 23, 2026
CVE-2009-2139
CVE-2009-2139
Description
Heap-based buffer overflow in svtools/source/filter.vcl/wmf/enhwmf.cxx in Go-oo 2.x and 3.x before 3.0.1, previously named ooo-build and related to OpenOffice.org (OOo), allows remote attackers to execute arbitrary code via a crafted EMF file, a similar issue to CVE-2008-2238.
Affected products
13cpe:2.3:a:sun:openoffice.org:2.0.0:*:*:*:*:*:*:*+ 12 more
- cpe:2.3:a:sun:openoffice.org:2.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:sun:openoffice.org:2.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:sun:openoffice.org:2.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:sun:openoffice.org:2.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:sun:openoffice.org:2.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:sun:openoffice.org:2.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:sun:openoffice.org:2.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:sun:openoffice.org:2.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:sun:openoffice.org:2.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:sun:openoffice.org:2.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:sun:openoffice.org:2.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:sun:openoffice.org:2.4.3:*:*:*:*:*:*:*
- cpe:2.3:a:sun:openoffice.org:3.0.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
12- www.debian.org/security/2009/dsa-1880nvdPatch
- secunia.com/advisories/36613nvdVendor Advisory
- cgit.freedesktop.org/ooo-build/ooo-build/commit/nvd
- lists.opensuse.org/opensuse-security-announce/2009-09/msg00001.htmlnvd
- marc.infonvd
- marc.infonvd
- marc.infonvd
- www.mandriva.com/security/advisoriesnvd
- www.mandriva.com/security/advisoriesnvd
- www.mandriva.com/security/advisoriesnvd
- www.openwall.com/lists/oss-security/2009/10/26/2nvd
- www.securityfocus.com/bid/36291nvd
News mentions
0No linked articles in our index yet.