Published: 18/12/2006 Updated: 17/10/2018

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 435

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

Integer overflow in OpenOffice.org (OOo) 2.1 allows user-assisted remote malicious users to cause a denial of service (application crash) via a crafted DOC file, as demonstrated by the 12122006-djtest.doc file, a variant of CVE-2006-6561 in a separate codebase.

Vulnerable Product	Search on Vulmon	Subscribe to Product
openoffice openoffice 2.1

===== The file I have attached is a very basic two stage bug stage 1 (the first mod) forces the code down a wrong path the second mod by itsself is harmless, however when used with the first it will be the first and part of the second overwrite I have use 41414141 as a marker to make it easier for you to see I have made it crash the wordvie ...

NVD-CWE-Other http://www.milw0rm.com/sploits/12122006-djtest.doc http://www.securityfocus.com/bid/21618 http://securityreason.com/securityalert/2043 http://www.vupen.com/english/advisories/2006/5051 http://www.securityfocus.com/archive/1/454737/100/0/threaded http://www.securityfocus.com/archive/1/454722/100/0/threaded http://www.securityfocus.com/archive/1/454545/100/0/threaded http://www.securityfocus.com/archive/1/454514/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/2922/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-6628

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect