CVE-2006-3117 Common Vulnerabilities and Exposures

Upstream information

CVE-2006-3117 at MITRE

Description

Heap-based buffer overflow in OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to execute arbitrary code via a crafted OpenOffice XML document that is not properly handled by (1) Calc, (2) Draw, (3) Impress, (4) Math, or (5) Writer, aka "File Format / Buffer Overflow Vulnerability."

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having important severity.

CVSS v2 Scores
CVSS detail	National Vulnerability Database
Base Score	7.6
Vector	AV:N/AC:H/Au:N/C:C/I:C/A:C
Access Vector	Network
Access Complexity	High
Authentication	None
Confidentiality Impact	Complete
Integrity Impact	Complete
Availability Impact	Complete

SUSE Bugzilla entry: 185717 [RESOLVED / FIXED]

SUSE Security Advisories:

SUSE-SA:2006:040, published Mon, 03 Jul 2006 16:00:00 +0000

List of released packages

Product(s)	Fixed package version(s)	References
openSUSE Tumbleweed	`libreoffice >= 7.1.5.2-3.13` `libreoffice-base >= 7.1.5.2-3.13` `libreoffice-base-drivers-postgresql >= 7.1.5.2-3.13` `libreoffice-branding-upstream >= 7.1.5.2-3.13` `libreoffice-calc >= 7.1.5.2-3.13` `libreoffice-calc-extensions >= 7.1.5.2-3.13` `libreoffice-draw >= 7.1.5.2-3.13` `libreoffice-filters-optional >= 7.1.5.2-3.13` `libreoffice-gdb-pretty-printers >= 7.1.5.2-3.13` `libreoffice-glade >= 7.1.5.2-3.13` `libreoffice-gnome >= 7.1.5.2-3.13` `libreoffice-gtk3 >= 7.1.5.2-3.13` `libreoffice-icon-themes >= 7.1.5.2-3.13` `libreoffice-impress >= 7.1.5.2-3.13` `libreoffice-l10n-af >= 7.1.5.2-3.13` `libreoffice-l10n-am >= 7.1.5.2-3.13` `libreoffice-l10n-ar >= 7.1.5.2-3.13` `libreoffice-l10n-as >= 7.1.5.2-3.13` `libreoffice-l10n-ast >= 7.1.5.2-3.13` `libreoffice-l10n-be >= 7.1.5.2-3.13` `libreoffice-l10n-bg >= 7.1.5.2-3.13` `libreoffice-l10n-bn >= 7.1.5.2-3.13` `libreoffice-l10n-bn_IN >= 7.1.5.2-3.13` `libreoffice-l10n-bo >= 7.1.5.2-3.13` `libreoffice-l10n-br >= 7.1.5.2-3.13` `libreoffice-l10n-brx >= 7.1.5.2-3.13` `libreoffice-l10n-bs >= 7.1.5.2-3.13` `libreoffice-l10n-ca >= 7.1.5.2-3.13` `libreoffice-l10n-ca_valencia >= 7.1.5.2-3.13` `libreoffice-l10n-ckb >= 7.1.5.2-3.13` `libreoffice-l10n-cs >= 7.1.5.2-3.13` `libreoffice-l10n-cy >= 7.1.5.2-3.13` `libreoffice-l10n-da >= 7.1.5.2-3.13` `libreoffice-l10n-de >= 7.1.5.2-3.13` `libreoffice-l10n-dgo >= 7.1.5.2-3.13` `libreoffice-l10n-dsb >= 7.1.5.2-3.13` `libreoffice-l10n-dz >= 7.1.5.2-3.13` `libreoffice-l10n-el >= 7.1.5.2-3.13` `libreoffice-l10n-en >= 7.1.5.2-3.13` `libreoffice-l10n-en_GB >= 7.1.5.2-3.13` `libreoffice-l10n-en_ZA >= 7.1.5.2-3.13` `libreoffice-l10n-eo >= 7.1.5.2-3.13` `libreoffice-l10n-es >= 7.1.5.2-3.13` `libreoffice-l10n-et >= 7.1.5.2-3.13` `libreoffice-l10n-eu >= 7.1.5.2-3.13` `libreoffice-l10n-fa >= 7.1.5.2-3.13` `libreoffice-l10n-fi >= 7.1.5.2-3.13` `libreoffice-l10n-fr >= 7.1.5.2-3.13` `libreoffice-l10n-fur >= 7.1.5.2-3.13` `libreoffice-l10n-fy >= 7.1.5.2-3.13` `libreoffice-l10n-ga >= 7.1.5.2-3.13` `libreoffice-l10n-gd >= 7.1.5.2-3.13` `libreoffice-l10n-gl >= 7.1.5.2-3.13` `libreoffice-l10n-gu >= 7.1.5.2-3.13` `libreoffice-l10n-gug >= 7.1.5.2-3.13` `libreoffice-l10n-he >= 7.1.5.2-3.13` `libreoffice-l10n-hi >= 7.1.5.2-3.13` `libreoffice-l10n-hr >= 7.1.5.2-3.13` `libreoffice-l10n-hsb >= 7.1.5.2-3.13` `libreoffice-l10n-hu >= 7.1.5.2-3.13` `libreoffice-l10n-id >= 7.1.5.2-3.13` `libreoffice-l10n-is >= 7.1.5.2-3.13` `libreoffice-l10n-it >= 7.1.5.2-3.13` `libreoffice-l10n-ja >= 7.1.5.2-3.13` `libreoffice-l10n-ka >= 7.1.5.2-3.13` `libreoffice-l10n-kab >= 7.1.5.2-3.13` `libreoffice-l10n-kk >= 7.1.5.2-3.13` `libreoffice-l10n-km >= 7.1.5.2-3.13` `libreoffice-l10n-kmr_Latn >= 7.1.5.2-3.13` `libreoffice-l10n-kn >= 7.1.5.2-3.13` `libreoffice-l10n-ko >= 7.1.5.2-3.13` `libreoffice-l10n-kok >= 7.1.5.2-3.13` `libreoffice-l10n-ks >= 7.1.5.2-3.13` `libreoffice-l10n-lb >= 7.1.5.2-3.13` `libreoffice-l10n-lo >= 7.1.5.2-3.13` `libreoffice-l10n-lt >= 7.1.5.2-3.13` `libreoffice-l10n-lv >= 7.1.5.2-3.13` `libreoffice-l10n-mai >= 7.1.5.2-3.13` `libreoffice-l10n-mk >= 7.1.5.2-3.13` `libreoffice-l10n-ml >= 7.1.5.2-3.13` `libreoffice-l10n-mn >= 7.1.5.2-3.13` `libreoffice-l10n-mni >= 7.1.5.2-3.13` `libreoffice-l10n-mr >= 7.1.5.2-3.13` `libreoffice-l10n-my >= 7.1.5.2-3.13` `libreoffice-l10n-nb >= 7.1.5.2-3.13` `libreoffice-l10n-ne >= 7.1.5.2-3.13` `libreoffice-l10n-nl >= 7.1.5.2-3.13` `libreoffice-l10n-nn >= 7.1.5.2-3.13` `libreoffice-l10n-nr >= 7.1.5.2-3.13` `libreoffice-l10n-nso >= 7.1.5.2-3.13` `libreoffice-l10n-oc >= 7.1.5.2-3.13` `libreoffice-l10n-om >= 7.1.5.2-3.13` `libreoffice-l10n-or >= 7.1.5.2-3.13` `libreoffice-l10n-pa >= 7.1.5.2-3.13` `libreoffice-l10n-pl >= 7.1.5.2-3.13` `libreoffice-l10n-pt_BR >= 7.1.5.2-3.13` `libreoffice-l10n-pt_PT >= 7.1.5.2-3.13` `libreoffice-l10n-ro >= 7.1.5.2-3.13` `libreoffice-l10n-ru >= 7.1.5.2-3.13` `libreoffice-l10n-rw >= 7.1.5.2-3.13` `libreoffice-l10n-sa_IN >= 7.1.5.2-3.13` `libreoffice-l10n-sat >= 7.1.5.2-3.13` `libreoffice-l10n-sd >= 7.1.5.2-3.13` `libreoffice-l10n-si >= 7.1.5.2-3.13` `libreoffice-l10n-sid >= 7.1.5.2-3.13` `libreoffice-l10n-sk >= 7.1.5.2-3.13` `libreoffice-l10n-sl >= 7.1.5.2-3.13` `libreoffice-l10n-sq >= 7.1.5.2-3.13` `libreoffice-l10n-sr >= 7.1.5.2-3.13` `libreoffice-l10n-ss >= 7.1.5.2-3.13` `libreoffice-l10n-st >= 7.1.5.2-3.13` `libreoffice-l10n-sv >= 7.1.5.2-3.13` `libreoffice-l10n-sw_TZ >= 7.1.5.2-3.13` `libreoffice-l10n-szl >= 7.1.5.2-3.13` `libreoffice-l10n-ta >= 7.1.5.2-3.13` `libreoffice-l10n-te >= 7.1.5.2-3.13` `libreoffice-l10n-tg >= 7.1.5.2-3.13` `libreoffice-l10n-th >= 7.1.5.2-3.13` `libreoffice-l10n-tn >= 7.1.5.2-3.13` `libreoffice-l10n-tr >= 7.1.5.2-3.13` `libreoffice-l10n-ts >= 7.1.5.2-3.13` `libreoffice-l10n-tt >= 7.1.5.2-3.13` `libreoffice-l10n-ug >= 7.1.5.2-3.13` `libreoffice-l10n-uk >= 7.1.5.2-3.13` `libreoffice-l10n-uz >= 7.1.5.2-3.13` `libreoffice-l10n-ve >= 7.1.5.2-3.13` `libreoffice-l10n-vec >= 7.1.5.2-3.13` `libreoffice-l10n-vi >= 7.1.5.2-3.13` `libreoffice-l10n-xh >= 7.1.5.2-3.13` `libreoffice-l10n-zh_CN >= 7.1.5.2-3.13` `libreoffice-l10n-zh_TW >= 7.1.5.2-3.13` `libreoffice-l10n-zu >= 7.1.5.2-3.13` `libreoffice-librelogo >= 7.1.5.2-3.13` `libreoffice-mailmerge >= 7.1.5.2-3.13` `libreoffice-math >= 7.1.5.2-3.13` `libreoffice-officebean >= 7.1.5.2-3.13` `libreoffice-pyuno >= 7.1.5.2-3.13` `libreoffice-qt5 >= 7.1.5.2-3.13` `libreoffice-sdk >= 7.1.5.2-3.13` `libreoffice-sdk-doc >= 7.1.5.2-3.13` `libreoffice-writer >= 7.1.5.2-3.13` `libreoffice-writer-extensions >= 7.1.5.2-3.13` `libreofficekit >= 7.1.5.2-3.13` `libreofficekit-devel >= 7.1.5.2-3.13`	Patchnames: openSUSE-Tumbleweed-2024-10983

SUSE Timeline for this CVE

CVE page created: Fri Jun 28 03:24:32 2013
CVE page last modified: Sat Nov 1 19:18:03 2025