Lucene search

K

MitreCVE-2006-5870

HistoryJan 04, 2007 - 11:00 a.m.

CVE-2006-5870

2007-01-0411:00:00

CWE-189

mitre

web.nvd.nist.gov

37

cve-2006-5870

integer overflow

remote code execution

openoffice.org

staroffice

wmf

emf

security vulnerability

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.3

Confidence

Low

EPSS

0.118

Percentile

95.3%

Multiple integer overflows in OpenOffice.org (OOo) 2.0.4 and earlier, and possibly other versions before 2.1.0; and StarOffice 6 through 8; allow user-assisted remote attackers to execute arbitrary code via a crafted (a) WMF or (b) EMF file that triggers heap-based buffer overflows in (1) wmf/winwmf.cxx, during processing of META_ESCAPE records; and wmf/enhwmf.cxx, during processing of (2) EMR_POLYPOLYGON and (3) EMR_POLYPOLYGON16 records.

Affected configurations

Nvd

Node

openofficeopenofficeRange≤2.0.4

OR

sunstarofficeMatch6.0

OR

sunstarofficeMatch7.0

OR

sunstarofficeMatch8.0

VendorProductVersionCPE
openofficeopenoffice*cpe:2.3:a:openoffice:openoffice:*:*:*:*:*:*:*:*
sunstaroffice6.0cpe:2.3:a:sun:staroffice:6.0:*:*:*:*:*:*:*
sunstaroffice7.0cpe:2.3:a:sun:staroffice:7.0:*:*:*:*:*:*:*
sunstaroffice8.0cpe:2.3:a:sun:staroffice:8.0:*:*:*:*:*:*:*

References

ftp://patches.sgi.com/support/free/security/advisories/20070101-01-P.asc

archives.neohapsis.com/archives/vulnwatch/2007-q1/0002.htmly

fedoranews.org/cms/node/2344

lists.suse.com/archive/suse-security-announce/2007-Jan/0001.html

osvdb.org/32610

osvdb.org/32611

secunia.com/advisories/23549

secunia.com/advisories/23600

secunia.com/advisories/23612

secunia.com/advisories/23616

secunia.com/advisories/23620

secunia.com/advisories/23682

secunia.com/advisories/23683

secunia.com/advisories/23711

secunia.com/advisories/23712

secunia.com/advisories/23762

secunia.com/advisories/23920

security.gentoo.org/glsa/glsa-200701-07.xml

securitytracker.com/id?1017466

sunsolve.sun.com/search/document.do?assetkey=1-26-102735-1

www.debian.org/security/2007/dsa-1246

www.kb.cert.org/vuls/id/220288

www.mandriva.com/security/advisories?name=MDKSA-2007:006

www.ngssoftware.com/advisories/high-risk-vulnerabilities-in-the-staroffice-suite/

www.openoffice.org/issues/show_bug.cgi?id=70042

www.openoffice.org/nonav/issues/showattachment.cgi/39509/alloc.overflows.wmf.patch

www.redhat.com/support/errata/RHSA-2007-0001.html

www.securityfocus.com/archive/1/455943/100/0/threaded

www.securityfocus.com/archive/1/455947/100/0/threaded

www.securityfocus.com/archive/1/455954/100/0/threaded

www.securityfocus.com/archive/1/455964/100/0/threaded

www.securityfocus.com/archive/1/456271/100/100/threaded

www.ubuntu.com/usn/usn-406-1

www.vupen.com/english/advisories/2007/0031

www.vupen.com/english/advisories/2007/0059

exchange.xforce.ibmcloud.com/vulnerabilities/31257

issues.rpath.com/browse/RPL-905

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8280

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9145

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.3

Confidence

Low

EPSS

0.118

Percentile

95.3%

Related for CVE-2006-5870

cvelist1 nessus27 openvas9 suse1 osv1 securityvulns1 redhat1 gentoo1 ubuntu1 centos1 cert1 debian1 nvd1 ubuntucve1 oraclelinux1