The host is installed with OpenOffice.org 2.x and 3.x before 3.3 and is prone to multiple directory traversal vulnerabilities. The flaws are present in the application, which fails to handle zip/jar package extraction. Successful exploitation may lead to overwriting files when relative file locations point to locations outside the root of the destination folder.