Lucene search

[email protected]NVD:CVE-2006-6628

HistoryDec 18, 2006 - 11:28 a.m.

CVE-2006-6628

2006-12-1811:28:00

[email protected]

web.nvd.nist.gov

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.4

Confidence

High

EPSS

0.963

Percentile

99.5%

JSON

Integer overflow in OpenOffice.org (OOo) 2.1 allows user-assisted remote attackers to cause a denial of service (application crash) via a crafted DOC file, as demonstrated by the 12122006-djtest.doc file, a variant of CVE-2006-6561 in a separate codebase.

Affected configurations

Nvd

Node

openofficeopenofficeMatch2.1

VendorProductVersionCPE
openofficeopenoffice2.1cpe:2.3:a:openoffice:openoffice:2.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
openoffice	openoffice	2.1	cpe:2.3:a:openoffice:openoffice:2.1:::::::*

References

securityreason.com/securityalert/2043

www.milw0rm.com/sploits/12122006-djtest.doc

www.securityfocus.com/archive/1/454514/100/0/threaded

www.securityfocus.com/archive/1/454545/100/0/threaded

www.securityfocus.com/archive/1/454722/100/0/threaded

www.securityfocus.com/archive/1/454737/100/0/threaded

www.securityfocus.com/bid/21618

www.vupen.com/english/advisories/2006/5051

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

6.4

Confidence

High

EPSS

0.963

Percentile

99.5%

JSON

Related for NVD:CVE-2006-6628

ubuntucve1 cvelist4 exploitdb1 redhatcve1 cve4 checkpoint_advisories1 cert1 nvd3 prion2 securityvulns2 nessus2