The host is installed with OpenOffice.org before 3.2 and is prone to integer underflow vulnerability. A flaw is present in filter/ww8/ww8par2.cxx, which fails to properly handle a crafted sprmTDefTable table property modifier in a Word document. Successful exploitation allows remote attackers to execute arbitrary code.