CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
Percentile
95.3%
CentOS Errata and Security Advisory CESA-2007:0001
OpenOffice.org is an office productivity suite that includes desktop
applications such as a word processor, spreadsheet, presentation manager,
formula editor, and drawing program.
Several integer overflow bugs were found in the OpenOffice.org WMF file
processor. An attacker could create a carefully crafted WMF file that could
cause OpenOffice.org to execute arbitrary code when the file was opened by
a victim. (CVE-2006-5870)
All users of OpenOffice.org are advised to upgrade to these updated
packages, which contain a backported fix for this issue.
Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2007-January/075620.html
https://lists.centos.org/pipermail/centos-announce/2007-January/075621.html
https://lists.centos.org/pipermail/centos-announce/2007-January/075634.html
https://lists.centos.org/pipermail/centos-announce/2007-January/075635.html
Affected packages:
openoffice.org
openoffice.org-i18n
openoffice.org-kde
openoffice.org-libs
Upstream details at:
https://access.redhat.com/errata/RHSA-2007:0001
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
CentOS | 3 | i386 | openoffice.org | < 1.1.2-35.2.0.EL3 | openoffice.org-1.1.2-35.2.0.EL3.i386.rpm |
CentOS | 3 | i386 | openoffice.org-i18n | < 1.1.2-35.2.0.EL3 | openoffice.org-i18n-1.1.2-35.2.0.EL3.i386.rpm |
CentOS | 3 | i386 | openoffice.org-libs | < 1.1.2-35.2.0.EL3 | openoffice.org-libs-1.1.2-35.2.0.EL3.i386.rpm |
CentOS | 3 | i386 | openoffice.org | < 1.1.2-35.2.0.EL3 | openoffice.org-1.1.2-35.2.0.EL3.i386.rpm |
CentOS | 3 | i386 | openoffice.org-i18n | < 1.1.2-35.2.0.EL3 | openoffice.org-i18n-1.1.2-35.2.0.EL3.i386.rpm |
CentOS | 3 | i386 | openoffice.org-libs | < 1.1.2-35.2.0.EL3 | openoffice.org-libs-1.1.2-35.2.0.EL3.i386.rpm |
CentOS | 4 | i386 | openoffice.org | < 1.1.5-6.6.0.EL4 | openoffice.org-1.1.5-6.6.0.EL4.i386.rpm |
CentOS | 4 | i386 | openoffice.org-i18n | < 1.1.5-6.6.0.EL4 | openoffice.org-i18n-1.1.5-6.6.0.EL4.i386.rpm |
CentOS | 4 | i386 | openoffice.org-kde | < 1.1.5-6.6.0.EL4 | openoffice.org-kde-1.1.5-6.6.0.EL4.i386.rpm |
CentOS | 4 | i386 | openoffice.org-libs | < 1.1.5-6.6.0.EL4 | openoffice.org-libs-1.1.5-6.6.0.EL4.i386.rpm |