VYPR
Unrated severityNVD Advisory· Published Dec 31, 2006· Updated Jun 16, 2026

CVE-2006-5870

CVE-2006-5870

Description

Multiple integer overflows in OpenOffice.org (OOo) 2.0.4 and earlier, and possibly other versions before 2.1.0; and StarOffice 6 through 8; allow user-assisted remote attackers to execute arbitrary code via a crafted (a) WMF or (b) EMF file that triggers heap-based buffer overflows in (1) wmf/winwmf.cxx, during processing of META_ESCAPE records; and wmf/enhwmf.cxx, during processing of (2) EMR_POLYPOLYGON and (3) EMR_POLYPOLYGON16 records.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • cpe:2.3:a:openoffice:openoffice:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:openoffice:openoffice:*:*:*:*:*:*:*:*range: <=2.0.4
    • (no CPE)range: <=2.0.4
  • cpe:2.3:a:sun:staroffice:6.0:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:sun:staroffice:6.0:*:*:*:*:*:*:*
    • cpe:2.3:a:sun:staroffice:7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:sun:staroffice:8.0:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

39

News mentions

0

No linked articles in our index yet.