Staroffice Security Vulnerabilities and Issues — Staroffice CVE List

Lucene search

SunStaroffice

10 matches found

CVE•added 2006/06/30 6:5 p.m.•64 views

CVE-2006-2198

OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to conduct unauthorized activities via an OpenOffice document with a malicious BASIC macro, which is executed without prompting the user.

7.6CVSS6AI score0.06307EPSS

CVE•added 2006/10/10 4:6 a.m.•64 views

CVE-2006-5201

Multiple packages on Sun Solaris, including (1) NSS; (2) Java JDK and JRE 5.0 Update 8 and earlier, SDK and JRE 1.4.x up to 1.4.2_12, and SDK and JRE 1.3.x up to 1.3.1_19; (3) JSSE 1.0.3_03 and earlier; (4) IPSec/IKE; (5) Secure Global Desktop; and (6) StarOffice, when using an RSA key with exponen...

4CVSS7.4AI score0.03819EPSS

CVE•added 2007/09/18 9:17 p.m.•62 views

CVE-2007-2834

Integer overflow in the TIFF parser in OpenOffice.org (OOo) before 2.3; and Sun StarOffice 6, 7, and 8 Office Suite (StarSuite); allows remote attackers to execute arbitrary code via a TIFF file with crafted values of unspecified length fields, which triggers allocation of an incorrect amount of me...

9.3CVSS7.7AI score0.10713EPSS

CVE•added 2007/01/04 11:0 a.m.•57 views

CVE-2006-5870

Multiple integer overflows in OpenOffice.org (OOo) 2.0.4 and earlier, and possibly other versions before 2.1.0; and StarOffice 6 through 8; allow user-assisted remote attackers to execute arbitrary code via a crafted (a) WMF or (b) EMF file that triggers heap-based buffer overflows in (1) wmf/winwm...

9.3CVSS7.3AI score0.2058EPSS

CVE•added 2006/06/30 6:5 p.m.•54 views

CVE-2006-3117

Heap-based buffer overflow in OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to execute arbitrary code via a crafted OpenOffice XML document that is not properly handled by (1) Calc, (2) Draw, (3) Impress, (4) Math, or (5) Writer, aka "File F...

7.6CVSS7.4AI score0.04635EPSS

CVE•added 2006/06/30 6:5 p.m.•49 views

CVE-2006-2199

Unspecified vulnerability in Java Applets in OpenOffice.org 1.1.x (aka StarOffice) up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to escape the Java sandbox and conduct unauthorized activities via certain applets in OpenOffice documents.

7.6CVSS6AI score0.08325EPSS

CVE•added 2000/07/12 4:0 a.m.•46 views

CVE-2000-0175

Buffer overflow in StarOffice StarScheduler web server allows remote attackers to gain root access via a long GET command.

10CVSS7.6AI score0.01189EPSS

CVE•added 2000/07/12 4:0 a.m.•42 views

CVE-2000-0174

StarOffice StarScheduler web server allows remote attackers to read arbitrary files via a .. (dot dot) attack.

5CVSS6.7AI score0.03624EPSS

CVE•added 2000/04/26 4:0 a.m.•42 views

CVE-2000-0291

Buffer overflow in Star Office 5.1 allows attackers to cause a denial of service by embedding a long URL within a document.

4.6CVSS7.1AI score0.0007EPSS

CVE•added 2001/01/09 5:0 a.m.•35 views

CVE-2000-1156

StarOffice 5.2 follows symlinks and sets world-readable permissions for the /tmp/soffice.tmp directory, which allows a local user to read files of the user who is using StarOffice.

3.6CVSS6.7AI score0.00073EPSS