NVD脆弱性詳細

CVE-2007-2834

概要	Integer overflow in the TIFF parser in OpenOffice.org (OOo) before 2.3; and Sun StarOffice 6, 7, and 8 Office Suite (StarSuite); allows remote attackers to execute arbitrary code via a TIFF file with crafted values of unspecified length fields, which triggers allocation of an incorrect amount of memory, resulting in a heap-based buffer overflow.
概要	Desbordamiento de enteros en el analizador TIFF en OpenOffice.org (OOo) anterior a la versión 2.3; y Office Suit (StarSuite) de Sun StarOffice versiones 6, 7 y 8 ; permite a los atacantes remotos ejecutar código arbitrario por medio de un archivo TIFF con valores creados de campos de longitud no especificada, lo que desencadena la asignación de una cantidad inapropiada de memoria, resultando en un desbordamiento de búfer en la región heap de la memoria.
公表日	2007年9月19日6:17
登録日	2021年1月29日14:13
最終更新日	2026年4月23日9:35

CVSS2.0 : HIGH
スコア	9.3
ベクター	AV:N/AC:M/Au:N/C:C/I:C/A:C
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	中
攻撃前の認証要否(Au)	不要
機密性への影響(C)	高
完全性への影響(I)	高
可用性への影響(A)	高
全ての特権を取得	はい
ユーザー権限を取得	いいえ
その他の権限を取得	いいえ
ユーザー操作が必要	はい

影響を受けるソフトウェアの構成

構成1	以上	以下	より上	未満
cpe:2.3:a:apache:openoffice::::::::				2.3.0
cpe:2.3:a:sun:staroffice:6.0:::::::*
cpe:2.3:a:sun:staroffice:7.0:::::::*
cpe:2.3:a:sun:staroffice:8.0:::::::*
cpe:2.3:a:sun:starsuite::::::::
cpe:2.3:o:debian:debian_linux:3.1:::::::*
cpe:2.3:o:debian:debian_linux:4.0:::::::*
cpe:2.3:o:canonical:ubuntu_linux:6.06:::::::*
cpe:2.3:o:canonical:ubuntu_linux:6.10:::::::*
cpe:2.3:o:canonical:ubuntu_linux:7.04:::::::*

関連情報、対策とツール

No	URL	refsource
1	http://bugs.gentoo.org/show_bug.cgi?id=192818	cve@mitre.org
2	http://fedoranews.org/updates/FEDORA-2007-237.shtml	cve@mitre.org
3	http://fedoranews.org/updates/FEDORA-2007-700.shtml	cve@mitre.org
4	http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=593	cve@mitre.org
5	http://lists.opensuse.org/opensuse-security-announce/2007-09/msg00002.html	cve@mitre.org
6	http://secunia.com/advisories/26816	cve@mitre.org
7	http://secunia.com/advisories/26817	cve@mitre.org
8	http://secunia.com/advisories/26839	cve@mitre.org
9	http://secunia.com/advisories/26844	cve@mitre.org
10	http://secunia.com/advisories/26855	cve@mitre.org
11	http://secunia.com/advisories/26861	cve@mitre.org
12	http://secunia.com/advisories/26891	cve@mitre.org
13	http://secunia.com/advisories/26903	cve@mitre.org
14	http://secunia.com/advisories/26912	cve@mitre.org
15	http://secunia.com/advisories/27077	cve@mitre.org
16	http://secunia.com/advisories/27087	cve@mitre.org
17	http://secunia.com/advisories/27370	cve@mitre.org
18	http://security.gentoo.org/glsa/glsa-200710-24.xml	cve@mitre.org
19	http://securitytracker.com/id?1018702	cve@mitre.org
20	http://sunsolve.sun.com/search/document.do?assetkey=1-26-102994-1	cve@mitre.org
21	http://sunsolve.sun.com/search/document.do?assetkey=1-66-200190-1	cve@mitre.org
22	http://www.debian.org/security/2007/dsa-1375	cve@mitre.org
23	http://www.mandriva.com/security/advisories?name=MDKSA-2007:186	cve@mitre.org
24	http://www.openoffice.org/security/cves/CVE-2007-2834.html	cve@mitre.org
25	http://www.redhat.com/support/errata/RHSA-2007-0848.html	cve@mitre.org
26	http://www.securityfocus.com/archive/1/479965/100/0/threaded	cve@mitre.org
27	http://www.securityfocus.com/bid/25690	cve@mitre.org
28	http://www.ubuntu.com/usn/usn-524-1	cve@mitre.org
29	http://www.vupen.com/english/advisories/2007/3184	cve@mitre.org
30	http://www.vupen.com/english/advisories/2007/3262	cve@mitre.org
31	https://exchange.xforce.ibmcloud.com/vulnerabilities/36656	cve@mitre.org
32	https://issues.rpath.com/browse/RPL-1740	cve@mitre.org
33	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9967	cve@mitre.org
34	http://bugs.gentoo.org/show_bug.cgi?id=192818	af854a3a-2127-422b-91ae-364da2661108
35	http://fedoranews.org/updates/FEDORA-2007-237.shtml	af854a3a-2127-422b-91ae-364da2661108
36	http://fedoranews.org/updates/FEDORA-2007-700.shtml	af854a3a-2127-422b-91ae-364da2661108
37	http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=593	af854a3a-2127-422b-91ae-364da2661108
38	http://lists.opensuse.org/opensuse-security-announce/2007-09/msg00002.html	af854a3a-2127-422b-91ae-364da2661108
39	http://secunia.com/advisories/26816	af854a3a-2127-422b-91ae-364da2661108
40	http://secunia.com/advisories/26817	af854a3a-2127-422b-91ae-364da2661108
41	http://secunia.com/advisories/26839	af854a3a-2127-422b-91ae-364da2661108
42	http://secunia.com/advisories/26844	af854a3a-2127-422b-91ae-364da2661108
43	http://secunia.com/advisories/26855	af854a3a-2127-422b-91ae-364da2661108
44	http://secunia.com/advisories/26861	af854a3a-2127-422b-91ae-364da2661108
45	http://secunia.com/advisories/26891	af854a3a-2127-422b-91ae-364da2661108
46	http://secunia.com/advisories/26903	af854a3a-2127-422b-91ae-364da2661108
47	http://secunia.com/advisories/26912	af854a3a-2127-422b-91ae-364da2661108
48	http://secunia.com/advisories/27077	af854a3a-2127-422b-91ae-364da2661108
49	http://secunia.com/advisories/27087	af854a3a-2127-422b-91ae-364da2661108
50	http://secunia.com/advisories/27370	af854a3a-2127-422b-91ae-364da2661108
51	http://security.gentoo.org/glsa/glsa-200710-24.xml	af854a3a-2127-422b-91ae-364da2661108
52	http://securitytracker.com/id?1018702	af854a3a-2127-422b-91ae-364da2661108
53	http://sunsolve.sun.com/search/document.do?assetkey=1-26-102994-1	af854a3a-2127-422b-91ae-364da2661108
54	http://sunsolve.sun.com/search/document.do?assetkey=1-66-200190-1	af854a3a-2127-422b-91ae-364da2661108
55	http://www.debian.org/security/2007/dsa-1375	af854a3a-2127-422b-91ae-364da2661108
56	http://www.mandriva.com/security/advisories?name=MDKSA-2007:186	af854a3a-2127-422b-91ae-364da2661108
57	http://www.openoffice.org/security/cves/CVE-2007-2834.html	af854a3a-2127-422b-91ae-364da2661108
58	http://www.redhat.com/support/errata/RHSA-2007-0848.html	af854a3a-2127-422b-91ae-364da2661108
59	http://www.securityfocus.com/archive/1/479965/100/0/threaded	af854a3a-2127-422b-91ae-364da2661108
60	http://www.securityfocus.com/bid/25690	af854a3a-2127-422b-91ae-364da2661108
61	http://www.ubuntu.com/usn/usn-524-1	af854a3a-2127-422b-91ae-364da2661108
62	http://www.vupen.com/english/advisories/2007/3184	af854a3a-2127-422b-91ae-364da2661108
63	http://www.vupen.com/english/advisories/2007/3262	af854a3a-2127-422b-91ae-364da2661108
64	https://exchange.xforce.ibmcloud.com/vulnerabilities/36656	af854a3a-2127-422b-91ae-364da2661108
65	https://issues.rpath.com/browse/RPL-1740	af854a3a-2127-422b-91ae-364da2661108
66	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9967	af854a3a-2127-422b-91ae-364da2661108

共通脆弱性一覧

No	CWE	名前	URL
1	CWE-190	整数オーバーフローまたはラップアラウンド	https://cwe.mitre.org/data/definitions/190.html

構成1	以上	以下	より上	未満
cpe:2.3:a:apache:openoffice::::::::				2.3.0
cpe:2.3:a:sun:staroffice:6.0:::::::*
cpe:2.3:a:sun:staroffice:7.0:::::::*
cpe:2.3:a:sun:staroffice:8.0:::::::*
cpe:2.3:a:sun:starsuite::::::::
cpe:2.3:o:debian:debian_linux:3.1:::::::*
cpe:2.3:o:debian:debian_linux:4.0:::::::*
cpe:2.3:o:canonical:ubuntu_linux:6.06:::::::*
cpe:2.3:o:canonical:ubuntu_linux:6.10:::::::*
cpe:2.3:o:canonical:ubuntu_linux:7.04:::::::*