CVE - CVE-2006-5870

CVE-ID
CVE-2006-5870	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Multiple integer overflows in OpenOffice.org (OOo) 2.0.4 and earlier, and possibly other versions before 2.1.0; and StarOffice 6 through 8; allow user-assisted remote attackers to execute arbitrary code via a crafted (a) WMF or (b) EMF file that triggers heap-based buffer overflows in (1) wmf/winwmf.cxx, during processing of META_ESCAPE records; and wmf/enhwmf.cxx, during processing of (2) EMR_POLYPOLYGON and (3) EMR_POLYPOLYGON16 records.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BUGTRAQ:20070104 Re: [VulnWatch] High Risk Vulnerability in the OpenOffice and StarOffice Suites URL:http://www.securityfocus.com/archive/1/455947/100/0/threaded BUGTRAQ:20070104 Re: [VulnWatch] High Risk Vulnerability in the OpenOffice and StarOffice Suites URL:http://www.securityfocus.com/archive/1/455954/100/0/threaded BUGTRAQ:20070104 Correction (High Risk Vulnerability in the OpenOffice and StarOffice Suites) URL:http://www.securityfocus.com/archive/1/455943/100/0/threaded BUGTRAQ:20070104 High Risk Vulnerability in the OpenOffice and StarOffice Suites URL:http://www.securityfocus.com/archive/1/455964/100/0/threaded BUGTRAQ:20070108 rPSA-2007-0001-1 openoffice.org URL:http://www.securityfocus.com/archive/1/456271/100/100/threaded VULNWATCH:20070104 High Risk Vulnerability in the OpenOffice and StarOffice Suites URL:http://archives.neohapsis.com/archives/vulnwatch/2007-q1/0002.htmly MISC:http://www.ngssoftware.com/advisories/high-risk-vulnerabilities-in-the-staroffice-suite/ CONFIRM:http://www.openoffice.org/issues/show_bug.cgi?id=70042 CONFIRM:http://www.openoffice.org/nonav/issues/showattachment.cgi/39509/alloc.overflows.wmf.patch CONFIRM:https://issues.rpath.com/browse/RPL-905 DEBIAN:DSA-1246 URL:http://www.debian.org/security/2007/dsa-1246 FEDORA:FEDORA-2007-005 URL:http://fedoranews.org/cms/node/2344 GENTOO:GLSA-200701-07 URL:http://security.gentoo.org/glsa/glsa-200701-07.xml MANDRIVA:MDKSA-2007:006 URL:http://www.mandriva.com/security/advisories?name=MDKSA-2007:006 REDHAT:RHSA-2007:0001 URL:http://www.redhat.com/support/errata/RHSA-2007-0001.html SGI:20070101-01-P URL:ftp://patches.sgi.com/support/free/security/advisories/20070101-01-P.asc SUNALERT:102735 URL:http://sunsolve.sun.com/search/document.do?assetkey=1-26-102735-1 SUSE:SUSE-SA:2007:001 URL:http://lists.suse.com/archive/suse-security-announce/2007-Jan/0001.html UBUNTU:USN-406-1 URL:http://www.ubuntu.com/usn/usn-406-1 CERT-VN:VU#220288 URL:http://www.kb.cert.org/vuls/id/220288 OVAL:oval:org.mitre.oval:def:9145 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9145 VUPEN:ADV-2007-0031 URL:http://www.vupen.com/english/advisories/2007/0031 VUPEN:ADV-2007-0059 URL:http://www.vupen.com/english/advisories/2007/0059 OSVDB:32610 URL:http://osvdb.org/32610 OSVDB:32611 URL:http://osvdb.org/32611 OVAL:oval:org.mitre.oval:def:8280 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8280 SECTRACK:1017466 URL:http://securitytracker.com/id?1017466 SECUNIA:23612 URL:http://secunia.com/advisories/23612 SECUNIA:23616 URL:http://secunia.com/advisories/23616 SECUNIA:23549 URL:http://secunia.com/advisories/23549 SECUNIA:23620 URL:http://secunia.com/advisories/23620 SECUNIA:23682 URL:http://secunia.com/advisories/23682 SECUNIA:23683 URL:http://secunia.com/advisories/23683 SECUNIA:23712 URL:http://secunia.com/advisories/23712 SECUNIA:23711 URL:http://secunia.com/advisories/23711 SECUNIA:23762 URL:http://secunia.com/advisories/23762 SECUNIA:23600 URL:http://secunia.com/advisories/23600 SECUNIA:23920 URL:http://secunia.com/advisories/23920 XF:openoffice-wmf-bo(31257) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/31257
Assigning CNA
N/A
Date Entry Created
20061114	Disclaimer: The entry creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20061114)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org