Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveDebianCVE-2006-3117
HistoryJun 30, 2006 - 6:05 p.m.

CVE-2006-3117

2006-06-3018:05:00
CWE-119
debian
web.nvd.nist.gov
39
cve-2006-3117
buffer overflow
openoffice.org
staroffice
code execution
nvd
vulnerability

CVSS2

7.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

AI Score

7.4

Confidence

Low

EPSS

0.011

Percentile

84.1%

JSON

Heap-based buffer overflow in OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to execute arbitrary code via a crafted OpenOffice XML document that is not properly handled by (1) Calc, (2) Draw, (3) Impress, (4) Math, or (5) Writer, aka “File Format / Buffer Overflow Vulnerability.”

Affected configurations

Nvd
Node
openofficeopenofficeMatch1.1.0
OR
openofficeopenofficeMatch1.1.1
OR
openofficeopenofficeMatch1.1.2
OR
openofficeopenofficeMatch1.1.3
OR
openofficeopenofficeMatch1.1.4
OR
openofficeopenofficeMatch2.0
OR
openofficeopenofficeMatch2.0.0
OR
openofficeopenofficeMatch2.0.1
OR
openofficeopenofficeMatch2.0.2
OR
sunstarofficeMatch6.0
OR
sunstarofficeMatch7.0
OR
sunstarofficeMatch8.0
VendorProductVersionCPE
openofficeopenoffice2.0cpe:/a:openoffice:openoffice:2.0:::
openofficeopenoffice2.0.2cpe:/a:openoffice:openoffice:2.0.2:::
sunstaroffice8.0cpe:/a:sun:staroffice:8.0:::
openofficeopenoffice1.1.1cpe:/a:openoffice:openoffice:1.1.1:::
sunstaroffice6.0cpe:/a:sun:staroffice:6.0:::
openofficeopenoffice2.0.0cpe:/a:openoffice:openoffice:2.0.0:::
openofficeopenoffice2.0.1cpe:/a:openoffice:openoffice:2.0.1:::
openofficeopenoffice1.1.4cpe:/a:openoffice:openoffice:1.1.4:::
sunstaroffice7.0cpe:/a:sun:staroffice:7.0:::
openofficeopenoffice1.1.3cpe:/a:openoffice:openoffice:1.1.3:::
Rows per page:
1-10 of 121

References

Related

ubuntucve 1
debian 2
cvelist 1
openvas 16
nvd 1
nessus 29
fedora 3
suse 1
osv 1
redhat 1
ubuntu 2
securityvulns 1
gentoo 1
centos 1
ubuntucve
ubuntucve
CVE-2006-3117
2006-06-30 00:00:00
debian
debian
[SECURITY] [DSA 1104-2] New OpenOffice.org packages fix arbitrary code execution
2006-07-06 12:22:09
[SECURITY] [DSA 1104-1] New OpenOffice.org packages fix several vulnerabilities
2006-06-30 03:39:48
cvelist
cvelist
CVE-2006-3117
2006-06-30 18:00:00
openvas
openvas
Debian Security Advisory DSA 1104-2 (openoffice.org)
2008-01-17 00:00:00
Fedora Update for openoffice.org FEDORA-2007-005 (FC5)
2009-02-27 00:00:00
Ubuntu: Security Advisory (USN-313-1)
2022-08-26 00:00:00
nvd
nvd
CVE-2006-3117
2006-06-30 18:05:00
nessus
nessus
Fedora Core 4 : openoffice.org-2.0.1.1-7.1 (2006-764)
2007-01-17 00:00:00
Ubuntu 5.10 : openoffice.org2-amd64, openoffice.org2 vulnerabilities (USN-313-2)
2007-11-10 00:00:00
GLSA-200607-12 : OpenOffice.org: Multiple vulnerabilities
2006-07-29 00:00:00
fedora
fedora
[SECURITY] Fedora Core 5 Update: openoffice.org-2.0.2-5.20.2
2007-01-03 20:33:37
[SECURITY] Fedora Core 5 Update: openoffice.org-2.0.2-5.21.2
2007-03-27 16:13:18
[SECURITY] Fedora Core 5 Update: openoffice.org-2.0.2-5.22.2
2007-06-25 17:32:48
suse
suse
remote code execution in OpenOffice_org
2006-07-03 15:25:29
osv
osv
openoffice.org - several vulnerabilities
2006-06-30 00:00:00
redhat
redhat
(RHSA-2006:0573) openoffice.org security update
2006-07-03 00:00:00
ubuntu
ubuntu
OpenOffice.org vulnerabilities
2006-07-19 00:00:00
OpenOffice.org vulnerabilities
2006-07-12 00:00:00
securityvulns
securityvulns
[Full-disclosure] [SECURITY] [DSA 1104-1] New OpenOffice.org packages fix several vulnerabilities
2006-06-30 00:00:00
gentoo
gentoo
OpenOffice.org: Multiple vulnerabilities
2006-07-28 00:00:00
centos
centos
openoffice.org security update
2006-07-04 05:29:17

CVSS2

7.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

AI Score

7.4

Confidence

Low

EPSS

0.011

Percentile

84.1%

JSON
Related for CVE-2006-3117
ubuntucve1debian2cvelist1openvas16nvd1nessus29fedora3suse1osv1redhat1ubuntu2securityvulns1gentoo1centos1