CVSS: 9.8EPSS: 8%CPEs: 12EXPL: 0CVE-2006-2199
https://notcve.org/view.php?id=CVE-2006-2199
30 Jun 2006 — Unspecified vulnerability in Java Applets in OpenOffice.org 1.1.x (aka StarOffice) up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to escape the Java sandbox and conduct unauthorized activities via certain applets in OpenOffice documents. Vulnerabilidad sin especificar en Java Applets en OpenOffice.org v1.1.x (tambien conocido como StarOffice) hasta la v1.1.5 y v2.0.x anteriores a v2.0.3 permite a atacantes asistidos por el usuario escapar el Java sandbox y realizar actividades no autoriza... • http://fedoranews.org/cms/node/2343 •
CVSS: 7.8EPSS: 4%CPEs: 12EXPL: 0CVE-2006-3117
https://notcve.org/view.php?id=CVE-2006-3117
30 Jun 2006 — Heap-based buffer overflow in OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to execute arbitrary code via a crafted OpenOffice XML document that is not properly handled by (1) Calc, (2) Draw, (3) Impress, (4) Math, or (5) Writer, aka "File Format / Buffer Overflow Vulnerability." • http://fedoranews.org/cms/node/2343 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: 9EXPL: 0CVE-2005-4636
https://notcve.org/view.php?id=CVE-2005-4636
31 Dec 2005 — OpenOffice.org 2.0 and earlier, when hyperlinks has been disabled, does not prevent the user from clicking the WWW-browser button in the Hyperlink dialog, which makes it easier for attackers to trick the user into bypassing intended security settings. • http://qa.openoffice.org/issues/show_bug.cgi?id=53491 •
CVSS: 9.8EPSS: 2%CPEs: 7EXPL: 0CVE-2005-0941
https://notcve.org/view.php?id=CVE-2005-0941
12 Apr 2005 — The StgCompObjStream::Load function in OpenOffice.org OpenOffice 1.1.4 and earlier allocates memory based on 16 bit length values, but process memory using 32 bit values, which allows remote attackers to cause a denial of service and possibly execute arbitrary code via a DOC document with certain length values, which leads to a heap-based buffer overflow. • http://secunia.com/advisories/17027 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2004-0752
https://notcve.org/view.php?id=CVE-2004-0752
14 Sep 2004 — OpenOffice (OOo) 1.1.2 creates predictable directory names with insecure permissions during startup, which may allow local users to read or list files of other users. OpenOffice (OOo) 1.12 crea nombres de directorios predecibles con permisos inseguros durante el inicio, lo que puede permitir a usuarios locales leer o listar ficheros de otros usuarios. • http://marc.info/?l=bugtraq&m=109483308421566&w=2 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2002-2210
https://notcve.org/view.php?id=CVE-2002-2210
31 Dec 2002 — The installation of OpenOffice 1.0.1 allows local users to overwrite files and possibly gain privileges via a symlink attack on the USERNAME_autoresponse.conf temporary file. • http://archives.neohapsis.com/archives/bugtraq/2002-10/0161.html •