Vulnerabilities > Openoffice > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-12-06 | CVE-2007-4575 | Code Injection vulnerability in Openoffice HSQLDB before 1.8.0.9, as used in OpenOffice.org (OOo) 2 before 2.3.1, allows user-assisted remote attackers to execute arbitrary Java code via crafted database documents, related to "exposing static java methods." | 9.3 |
| 2007-06-12 | CVE-2007-0245 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Openoffice Heap-based buffer overflow in OpenOffice.org (OOo) 2.2.1 and earlier allows remote attackers to execute arbitrary code via a RTF file with a crafted prtdata tag with a length parameter inconsistency, which causes vtable entries to be overwritten. | 9.3 |
| 2007-03-21 | CVE-2007-0239 | Remote Shell Command Execution vulnerability in OpenOffice Meta Character OpenOffice.org (OOo) Office Suite allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in a prepared link in a crafted document. | 9.3 |
| 2007-03-21 | CVE-2007-0238 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Openoffice Stack-based buffer overflow in filter\starcalc\scflt.cxx in the StarCalc parser in OpenOffice.org (OOo) Office Suite before 2.2, and 1.x before 1.1.5 Patch, allows user-assisted remote attackers to execute arbitrary code via a document with a long Note. | 9.3 |
| 2006-12-31 | CVE-2006-5870 | Numeric Errors vulnerability in multiple products Multiple integer overflows in OpenOffice.org (OOo) 2.0.4 and earlier, and possibly other versions before 2.1.0; and StarOffice 6 through 8; allow user-assisted remote attackers to execute arbitrary code via a crafted (a) WMF or (b) EMF file that triggers heap-based buffer overflows in (1) wmf/winwmf.cxx, during processing of META_ESCAPE records; and wmf/enhwmf.cxx, during processing of (2) EMR_POLYPOLYGON and (3) EMR_POLYPOLYGON16 records. | 9.3 |