PT-2006-7230 · Apache · Openoffice.Org
Gplit
·
Published
2006-12-18
·
Updated
2018-10-17
·
CVE-2006-6628
CVSS v2.0
4.3
Medium
| Vector | AV:N/AC:M/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions
OpenOffice.org (OOo) version 2.1
Description
The issue is related to an integer overflow that allows user-assisted remote attackers to cause a denial of service, resulting in an application crash. This can be achieved by using a crafted DOC file.
Recommendations
For OpenOffice.org (OOo) version 2.1, consider avoiding the use of crafted DOC files until a patch is available. As a temporary workaround, restrict the opening of DOC files from untrusted sources to minimize the risk of exploitation.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Openoffice.Org