LibreOffice is prone to a heap-based buffer-overflow vulnerability.
Attackers can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.
Information
Exploit
The researcher who discovered this issue has created a proof-of-concept. Please see the references for more information.
References:
- LibreOffice Homepage (LibreOffice)
- libreoffice: Heap-buffer-overflow in SVMConverter::ImplConvertFromSVM1 (Google)
- ofz#817 nStrLen-1 changed to nStrLen-3 (LibreOffice)