CVE-2006-2198

Опубликовано: 30 июн. 2006

Источник: nvd

CVSS2: 7.6

EPSS Низкий

Описание

OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to conduct unauthorized activities via an OpenOffice document with a malicious BASIC macro, which is executed without prompting the user.

Ссылки

http://fedoranews.org/cms/node/2343
http://secunia.com/advisories/20867
Vendor Advisory
http://secunia.com/advisories/20893
Vendor Advisory
http://secunia.com/advisories/20910
Vendor Advisory
http://secunia.com/advisories/20911
Vendor Advisory
http://secunia.com/advisories/20913
Vendor Advisory
http://secunia.com/advisories/20975
Vendor Advisory
http://secunia.com/advisories/20995
Vendor Advisory
http://secunia.com/advisories/21278
Vendor Advisory
http://secunia.com/advisories/22129
Vendor Advisory
http://secunia.com/advisories/23620
Vendor Advisory
http://security.gentoo.org/glsa/glsa-200607-12.xml
http://securitytracker.com/id?1016414
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102490-1
Patch
http://www.debian.org/security/2006/dsa-1104
http://www.kb.cert.org/vuls/id/170113
US Government Resource
http://www.mandriva.com/security/advisories?name=MDKSA-2006:118
http://www.novell.com/linux/security/advisories/2006_40_openoffice.html
http://www.openoffice.org/security/CVE-2006-2199.html
Patch
Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2006-0573.html

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:openoffice:openoffice:1.1.0:*:*:*:*:*:*:*

cpe:2.3:a:openoffice:openoffice:1.1.1:*:*:*:*:*:*:*

cpe:2.3:a:openoffice:openoffice:1.1.1a:*:*:*:*:*:*:*

cpe:2.3:a:openoffice:openoffice:1.1.1b:*:*:*:*:*:*:*

cpe:2.3:a:openoffice:openoffice:1.1.2:*:*:*:*:*:*:*

cpe:2.3:a:openoffice:openoffice:1.1.3:*:*:*:*:*:*:*

cpe:2.3:a:openoffice:openoffice:1.1.4:*:*:*:*:*:*:*

cpe:2.3:a:openoffice:openoffice:1.1.5:*:*:*:*:*:*:*

cpe:2.3:a:openoffice:openoffice:2.0.0:*:*:*:*:*:*:*

cpe:2.3:a:openoffice:openoffice:2.0.0_rc1:*:*:*:*:*:*:*

cpe:2.3:a:openoffice:openoffice:2.0.0_rc2:*:*:*:*:*:*:*

cpe:2.3:a:openoffice:openoffice:2.0.0_rc3:*:*:*:*:*:*:*

cpe:2.3:a:openoffice:openoffice:2.0.1:*:*:*:*:*:*:*

cpe:2.3:a:openoffice:openoffice:2.0.2:*:*:*:*:*:*:*

cpe:2.3:a:openoffice:openoffice:2.0.2_rc1:*:*:*:*:*:*:*

cpe:2.3:a:openoffice:openoffice:2.0.2_rc2:*:*:*:*:*:*:*

cpe:2.3:a:openoffice:openoffice:2.0.2_rc3:*:*:*:*:*:*:*

cpe:2.3:a:openoffice:openoffice:2.0.2_rc4:*:*:*:*:*:*:*

cpe:2.3:a:openoffice:openoffice:2.0.3_rc3:*:*:*:*:*:*:*

cpe:2.3:a:openoffice:openoffice:2.0.3_rc4:*:*:*:*:*:*:*

cpe:2.3:a:openoffice:openoffice:2.0.3_rc5:*:*:*:*:*:*:*

cpe:2.3:a:openoffice:openoffice:2.0.3_rc6:*:*:*:*:*:*:*

cpe:2.3:a:sun:staroffice:7.0:*:*:*:*:*:*:*

cpe:2.3:a:sun:staroffice:8.0:*:*:*:*:*:*:*

EPSS

Процентиль: 92%

0.07757

Низкий

7.6 High

CVSS2

Дефекты

CWE-264

Связанные уязвимости

CVE-2006-2198

ubuntu

около 19 лет назад

CVE-2006-2198

redhat

около 19 лет назад

CVE-2006-2198

debian

около 19 лет назад

OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x before 2.0 ...

GHSA-pp72-j4xc-h27c

github

больше 3 лет назад

EPSS

Процентиль: 92%

0.07757

Низкий

7.6 High

CVSS2

Дефекты

CWE-264