Vulnerabilities > Openoffice

DATE CVE VULNERABILITY TITLE RISK
2006-12-31 CVE-2006-5870 Numeric Errors vulnerability in multiple products
Multiple integer overflows in OpenOffice.org (OOo) 2.0.4 and earlier, and possibly other versions before 2.1.0; and StarOffice 6 through 8; allow user-assisted remote attackers to execute arbitrary code via a crafted (a) WMF or (b) EMF file that triggers heap-based buffer overflows in (1) wmf/winwmf.cxx, during processing of META_ESCAPE records; and wmf/enhwmf.cxx, during processing of (2) EMR_POLYPOLYGON and (3) EMR_POLYPOLYGON16 records.
network
openoffice sun CWE-189
critical
9.3
2006-12-18 CVE-2006-6628 Remote Word File Integer Overflow vulnerability in Openoffice 2.1
Integer overflow in OpenOffice.org (OOo) 2.1 allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted DOC file, as demonstrated by the 12122006-djtest.doc file, a variant of CVE-2006-6561 in a separate codebase.
network
openoffice
4.3
2006-06-30 CVE-2006-3117 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products
Heap-based buffer overflow in OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to execute arbitrary code via a crafted OpenOffice XML document that is not properly handled by (1) Calc, (2) Draw, (3) Impress, (4) Math, or (5) Writer, aka "File Format / Buffer Overflow Vulnerability."
network
high complexity
openoffice sun CWE-119
7.6
2006-06-30 CVE-2006-2199 Unspecified vulnerability in Java Applets in OpenOffice.org 1.1.x (aka StarOffice) up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to escape the Java sandbox and conduct unauthorized activities via certain applets in OpenOffice documents.
network
high complexity
openoffice sun
7.6
2006-06-30 CVE-2006-2198 Permissions, Privileges, and Access Controls vulnerability in multiple products
OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to conduct unauthorized activities via an OpenOffice document with a malicious BASIC macro, which is executed without prompting the user.
network
high complexity
openoffice sun CWE-264
7.6
2005-12-31 CVE-2005-4636 Local Security vulnerability in Openoffice
OpenOffice.org 2.0 and earlier, when hyperlinks has been disabled, does not prevent the user from clicking the WWW-browser button in the Hyperlink dialog, which makes it easier for attackers to trick the user into bypassing intended security settings.
local
low complexity
openoffice
4.6
2005-05-02 CVE-2005-0941 Remote Heap Overflow vulnerability in OpenOffice Malformed Document
The StgCompObjStream::Load function in OpenOffice.org OpenOffice 1.1.4 and earlier allocates memory based on 16 bit length values, but process memory using 32 bit values, which allows remote attackers to cause a denial of service and possibly execute arbitrary code via a DOC document with certain length values, which leads to a heap-based buffer overflow.
network
high complexity
openoffice
5.1
2004-10-20 CVE-2004-0752 Local File Disclosure vulnerability in Openoffice 1.1.2
OpenOffice (OOo) 1.1.2 creates predictable directory names with insecure permissions during startup, which may allow local users to read or list files of other users.
local
low complexity
openoffice
2.1
2004-07-07 CVE-2004-0398 Heap Overflow vulnerability in Neon WebDAV Client Library ne_rfc1036_parse Function
Heap-based buffer overflow in the ne_rfc1036_parse date parsing function for the neon library (libneon) 0.24.5 and earlier, as used by cadaver before 0.22, allows remote WebDAV servers to execute arbitrary code on the client.
network
low complexity
cadaver neon openoffice subversion
7.5
2004-06-01 CVE-2004-0179 Multiple format string vulnerabilities in (1) neon 0.24.4 and earlier, and other products that use neon including (2) Cadaver, (3) Subversion, and (4) OpenOffice, allow remote malicious WebDAV servers to execute arbitrary code.
network
high complexity
cadaver neon openoffice subversion
5.1