Rapid7 Vulnerability & Exploit Database

SUSE Linux Security Vulnerability: CVE-2006-5870

Back to Search

SUSE Linux Security Vulnerability: CVE-2006-5870

Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
12/31/2006
Created
07/25/2018
Added
02/17/2015
Modified
07/04/2017

Description

Multiple integer overflows in OpenOffice.org (OOo) 2.0.4 and earlier, and possibly other versions before 2.1.0; and StarOffice 6 through 8; allow user-assisted remote attackers to execute arbitrary code via a crafted (a) WMF or (b) EMF file that triggers heap-based buffer overflows in (1) wmf/winwmf.cxx, during processing of META_ESCAPE records; and wmf/enhwmf.cxx, during processing of (2) EMR_POLYPOLYGON and (3) EMR_POLYPOLYGON16 records.

Solution(s)

  • suse-upgrade-art-sharp
  • suse-upgrade-audit
  • suse-upgrade-audit-devel
  • suse-upgrade-audit-libs
  • suse-upgrade-audit-libs-32bit
  • suse-upgrade-audit-libs-64bit
  • suse-upgrade-audit-libs-python
  • suse-upgrade-audit-libs-x86
  • suse-upgrade-beagle
  • suse-upgrade-beagle-evolution
  • suse-upgrade-beagle-firefox
  • suse-upgrade-beagle-gui
  • suse-upgrade-cifs-mount
  • suse-upgrade-compiz
  • suse-upgrade-contact-lookup-applet
  • suse-upgrade-dhcp
  • suse-upgrade-dhcp-client
  • suse-upgrade-dhcp-devel
  • suse-upgrade-dhcp-relay
  • suse-upgrade-dhcp-server
  • suse-upgrade-dia
  • suse-upgrade-evolution
  • suse-upgrade-evolution-devel
  • suse-upgrade-evolution-exchange
  • suse-upgrade-evolution-pilot
  • suse-upgrade-evolution-webcal
  • suse-upgrade-f-spot
  • suse-upgrade-gaim
  • suse-upgrade-gaim-devel
  • suse-upgrade-gconf-sharp
  • suse-upgrade-gda-sharp
  • suse-upgrade-gdb
  • suse-upgrade-gdb-32bit
  • suse-upgrade-gdb-64bit
  • suse-upgrade-gdb-x86
  • suse-upgrade-gftp
  • suse-upgrade-glade-sharp
  • suse-upgrade-glib-sharp
  • suse-upgrade-glib2
  • suse-upgrade-glib2-32bit
  • suse-upgrade-glib2-64bit
  • suse-upgrade-glib2-devel
  • suse-upgrade-glib2-doc
  • suse-upgrade-glib2-x86
  • suse-upgrade-gnome-backgrounds
  • suse-upgrade-gnome-filesystem
  • suse-upgrade-gnome-games
  • suse-upgrade-gnome-sharp
  • suse-upgrade-gnomedb-sharp
  • suse-upgrade-gnopernicus
  • suse-upgrade-gnopernicus-devel
  • suse-upgrade-gstreamer010-plugins-base
  • suse-upgrade-gstreamer010-plugins-base-32bit
  • suse-upgrade-gstreamer010-plugins-base-64bit
  • suse-upgrade-gstreamer010-plugins-base-devel
  • suse-upgrade-gstreamer010-plugins-base-doc
  • suse-upgrade-gstreamer010-plugins-base-oil
  • suse-upgrade-gstreamer010-plugins-base-oil-32bit
  • suse-upgrade-gstreamer010-plugins-base-visual
  • suse-upgrade-gstreamer010-plugins-base-visual-32bit
  • suse-upgrade-gstreamer010-plugins-base-x86
  • suse-upgrade-gtk-sharp
  • suse-upgrade-gtk-sharp-32bit
  • suse-upgrade-gtk-sharp-complete
  • suse-upgrade-gtk-sharp-gapi
  • suse-upgrade-gtkhtml-sharp
  • suse-upgrade-helix-dbus-server
  • suse-upgrade-inkscape
  • suse-upgrade-libbeagle
  • suse-upgrade-libbeagle-32bit
  • suse-upgrade-libbeagle-64bit
  • suse-upgrade-libbeagle-devel
  • suse-upgrade-libbeagle-x86
  • suse-upgrade-libgail-gnome
  • suse-upgrade-libgail-gnome-devel
  • suse-upgrade-libgdiplus
  • suse-upgrade-libipoddevice
  • suse-upgrade-libipoddevice-32bit
  • suse-upgrade-libmsrpc
  • suse-upgrade-libmsrpc-devel
  • suse-upgrade-libsmbclient
  • suse-upgrade-libsmbclient-32bit
  • suse-upgrade-libsmbclient-64bit
  • suse-upgrade-libsmbclient-devel
  • suse-upgrade-libsmbclient-x86
  • suse-upgrade-libtool
  • suse-upgrade-libtool-32bit
  • suse-upgrade-libtool-64bit
  • suse-upgrade-libtool-x86
  • suse-upgrade-linphone
  • suse-upgrade-linphone-applet
  • suse-upgrade-networkmanager
  • suse-upgrade-networkmanager-devel
  • suse-upgrade-networkmanager-glib
  • suse-upgrade-networkmanager-gnome
  • suse-upgrade-networkmanager-openvpn
  • suse-upgrade-networkmanager-vpnc
  • suse-upgrade-openobex
  • suse-upgrade-openobex-devel
  • suse-upgrade-openoffice_org
  • suse-upgrade-openoffice_org-af
  • suse-upgrade-openoffice_org-ar
  • suse-upgrade-openoffice_org-ca
  • suse-upgrade-openoffice_org-cs
  • suse-upgrade-openoffice_org-da
  • suse-upgrade-openoffice_org-de
  • suse-upgrade-openoffice_org-de-templates
  • suse-upgrade-openoffice_org-es
  • suse-upgrade-openoffice_org-fi
  • suse-upgrade-openoffice_org-fr
  • suse-upgrade-openoffice_org-galleries
  • suse-upgrade-openoffice_org-gnome
  • suse-upgrade-openoffice_org-gu-in
  • suse-upgrade-openoffice_org-hi-in
  • suse-upgrade-openoffice_org-hu
  • suse-upgrade-openoffice_org-it
  • suse-upgrade-openoffice_org-ja
  • suse-upgrade-openoffice_org-kde
  • suse-upgrade-openoffice_org-mono
  • suse-upgrade-openoffice_org-nb
  • suse-upgrade-openoffice_org-nl
  • suse-upgrade-openoffice_org-nld
  • suse-upgrade-openoffice_org-nn
  • suse-upgrade-openoffice_org-pl
  • suse-upgrade-openoffice_org-pt-br
  • suse-upgrade-openoffice_org-ru
  • suse-upgrade-openoffice_org-sk
  • suse-upgrade-openoffice_org-sv
  • suse-upgrade-openoffice_org-xh
  • suse-upgrade-openoffice_org-zh-cn
  • suse-upgrade-openoffice_org-zh-tw
  • suse-upgrade-openoffice_org-zu
  • suse-upgrade-planner
  • suse-upgrade-planner-devel
  • suse-upgrade-pwlib
  • suse-upgrade-pwlib-devel
  • suse-upgrade-resapplet
  • suse-upgrade-rsvg-sharp
  • suse-upgrade-sabayon
  • suse-upgrade-sabayon-admin
  • suse-upgrade-samba
  • suse-upgrade-samba-32bit
  • suse-upgrade-samba-64bit
  • suse-upgrade-samba-client
  • suse-upgrade-samba-client-32bit
  • suse-upgrade-samba-client-64bit
  • suse-upgrade-samba-client-x86
  • suse-upgrade-samba-doc
  • suse-upgrade-samba-krb-printing
  • suse-upgrade-samba-pdb
  • suse-upgrade-samba-python
  • suse-upgrade-samba-vscan
  • suse-upgrade-samba-winbind
  • suse-upgrade-samba-winbind-32bit
  • suse-upgrade-samba-winbind-64bit
  • suse-upgrade-samba-winbind-x86
  • suse-upgrade-samba-x86
  • suse-upgrade-tomboy
  • suse-upgrade-vte-sharp
  • suse-upgrade-wbxml2
  • suse-upgrade-xgl
  • suse-upgrade-xgl-hardware-list

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;