The host is installed with OpenOffice.org before 3.2 and is prone to heap-based buffer overflow vulnerability. A flaw is present in the GIFLZWDecompressor::GIFLZWDecompressor function in filter.vcl/lgif/decode.cxx, which fails to properly handle a crafted GIF file. Successful exploitation allows remote attackers to execute arbitrary code.