=====================================================================
                                   CERT-Renater

                        Note d'Information No. 2008/VULN471
_____________________________________________________________________

DATE                      : 29/10/2008

HARDWARE PLATFORM(S)      : /

OPERATING SYSTEM(S)       : Systems running OpenOffice.org versions prior
                                                 to 2.4.2.

======================================================================
http://www.openoffice.org/security/cves/CVE-2008-2238.html
http://www.openoffice.org/security/cves/CVE-2008-2237.html
______________________________________________________________________

CVE-2008-2238
Manipulated WMF files can lead to heap overflows and arbitrary code
execution

    * Synopsis:Manipulated EMF files can lead to heap overflows and
arbitrary code execution
    * State: Resolved


1. Impact

A security vulnerability with the way OpenOffice 2.x process EMF files
may allow a remote unprivileged user who provides a StarOffice/StarSuite
document that is opened by a local user to execute arbitrary commands on
the system with the privileges of the user running StarOffice/StarSuite.
No working exploit is known right now.


2. Affected releases

All versions prior to OpenOffice.org 2.4.2


3. Symptoms

There are no predictable symptoms that would indicate this issue has occurred


4. Relief/Workaround

There is no workaround. See "Resolution" below.


5. Resolution

This issue is addressed in the following release:

OpenOffice.org 2.4.2

Note: OpenOffice.org 3.0 is not affected by this vulnerability.

Security Home -> Bulletin -> CVE-2008-2238

6. Comments

OpenOffice.org acknowledges with thanks, an anonymous researcher
working with the iDefense VCP.
_________________________________________________________________________

CVE-2008-2237
Manipulated WMF files can lead to heap overflows and arbitrary code
execution

    * Synopsis:Manipulated WMF files can lead to heap overflows and
arbitrary code execution
    * State: Resolved

1. Impact

A security vulnerability with the way OpenOffice 2.x process WMF files
may allow a remote unprivileged user who provides a StarOffice/StarSuite
document that is opened by a local user to execute arbitrary commands on
the system with the privileges of the user running StarOffice/StarSuite.
No working exploit is known right now.


2. Affected releases

All versions prior to OpenOffice.org 2.4.2


3. Symptoms

There are no predictable symptoms that would indicate this issue has occurred


4. Relief/Workaround

There is no workaround. See "Resolution" below.


5. Resolution

This issue is addressed in the following release:

OpenOffice.org 2.4.2

Note: OpenOffice.org 3.0 is not affected by this vulnerability.

Security Home -> Bulletin -> CVE-2008-2237


6. Comments

OpenOffice.org acknowledges with thanks, an anonymous researcher working
with the SureRun Security Team.


======================================================================

          =========================================================
          Les serveurs de référence du CERT-Renater
          http://www.urec.fr/securite
          http://www.cru.fr/securite
          http://www.renater.fr
          =========================================================
          + CERT-RENATER          | tel : 01-53-94-20-44          +
          + 151 bd de l'Hopital   | fax : 01-53-94-20-41          +
          + 75013 Paris           | email: certsvp@renater.fr     +
          =========================================================