PT-2006-4015 · Apache+1 · Openoffice.Org+1

Published

2006-06-30

Updated

2024-06-15

CVE-2006-3117

CVSS v2.0

7.6

High

Vector

AV:N/AC:H/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions OpenOffice.org versions 1.1.x up to 1.1.5 OpenOffice.org versions 2.0.x before 2.0.3

Description A heap-based buffer overflow issue allows user-assisted attackers to execute arbitrary code via a crafted OpenOffice XML document that is not properly handled by various components, including Calc, Draw, Impress, Math, or Writer.

Recommendations For OpenOffice.org versions 1.1.x up to 1.1.5, update to a version later than 1.1.5 to resolve the issue. For OpenOffice.org versions 2.0.x before 2.0.3, update to version 2.0.3 or later to resolve the issue.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2006-3117

DSA-1104

OPENSUSE-SU-2024:10983-1

RHSA-2006:0573

RHSA-2006_0573

Affected Products

Openoffice.Org

Red Hat

PT-2006-4015 · Apache+1 · Openoffice.Org+1

CVE-2006-3117

Weakness Enumeration

Related Identifiers

Affected Products

References · 59