Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:15309
HistoryDec 05, 2006 - 12:00 a.m.

[KOffice security advisory] KOffice OLEfilter integer overflow

2006-12-0500:00:00
vulners.com
14
JSON

KOffice Security Advisory: KOffice olefilters integer overflow
Original Release Date: 2006-12-04
URL: http://www.kde.org/info/security/advisory-20061204-1.txt

  1. References

     CVE-2006-6120

  2. Systems affected:

     KOffice 1.4.x and 1.6.0. 1.5.x releases are unaffected as well
 as 1.6.1 or newer.

  3. Overview:

     The OLE import filter, which is used in KPresenter to open Microsoft
 Powerpoint files is vulnerable to an integer overflow problem that
 can be exploited to expose an heap memory overflow.  This
 issue was reported by Kees Cook from Ubuntu security.

  4. Impact:

     A maliciously crafted file can cause to execute arbitrary code.

  5. Solution:

     Source code patches have been made available which fix these
 vulnerabilities. Contact your OS vendor / binary package provider
 fo information about how to obtain updated binary packages.

  6. Patch:

     A patch for KOffice 1.4.0 - KOffice 1.6.0 is available from
 ftp://ftp.kde.org/pub/kde/security_patches :

 20dff20ccd2e184f1874aa60d85f4380  post-koffice-1.6.0.diff

Related

redhat 1
gentoo 1
nessus 6
slackware 1
cve 1
openvas 3
ubuntu 1
ubuntucve 1
securityvulns 1
centos 1
redhat
redhat
(RHSA-2007:0010) Moderate: koffice security update
2007-02-20 00:00:00
gentoo
gentoo
KOffice shared libraries: Heap corruption
2006-12-10 00:00:00
nessus
nessus
GLSA-200612-05 : KOffice shared libraries: Heap corruption
2006-12-14 00:00:00
openSUSE 10 Security Update : koffice (koffice-2323)
2007-10-17 00:00:00
Slackware 10.2 : koffice (SSA:2006-357-04)
2007-02-18 00:00:00
slackware
slackware
[slackware-security] koffice
2006-12-24 02:29:31
cve
cve
CVE-2006-6120
2006-12-03 19:28:00
openvas
openvas
Slackware Advisory SSA:2006-357-04 koffice
2012-09-11 00:00:00
Gentoo Security Advisory GLSA 200612-05 (koffice-libs)
2008-09-24 00:00:00
Slackware Advisory SSA:2006-357-04 koffice
2012-09-11 00:00:00
ubuntu
ubuntu
KOffice vulnerability
2006-11-29 00:00:00
ubuntucve
ubuntucve
CVE-2006-6120
2006-12-03 00:00:00
securityvulns
securityvulns
[USN-388-1] KOffice vulnerability
2006-11-30 00:00:00
centos
centos
koffice security update
2007-02-21 06:28:25
JSON
Related for SECURITYVULNS:DOC:15309
redhat1gentoo1nessus6slackware1cve1openvas3ubuntu1ubuntucve1securityvulns1centos1