CVE-2006-3117

Heap-based buffer overflow in OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to execute arbitrary code via a crafted OpenOffice XML document that is not properly handled by (1) Calc, (2) Draw, (3) Impress, (4) Math, or (5) Writer, aka "File Format / Buffer Overflow Vulnerability."

🔗 References (58)

• security@debianhttp://fedoranews.org/cms/node/2343
• security@debianhttp://secunia.com/advisories/20867
• security@debianhttp://secunia.com/advisories/20893
• security@debianhttp://secunia.com/advisories/20910
• security@debianhttp://secunia.com/advisories/20911
• security@debianhttp://secunia.com/advisories/20913
• security@debianhttp://secunia.com/advisories/20975
• security@debianhttp://secunia.com/advisories/20995
• security@debianhttp://secunia.com/advisories/21278
• security@debianhttp://secunia.com/advisories/22129
• security@debianhttp://secunia.com/advisories/23620
• security@debianhttp://security.gentoo.org/glsa/glsa-200607-12.xml
• security@debianhttp://securitytracker.com/id?1016414
• security@debianhttp://sunsolve.sun.com/search/document.do?assetkey=1-26-102501-1
• security@debianhttp://www.debian.org/security/2006/dsa-1104