CVE-2006-6120 - Integer overflow in the KPresenter import filter for Microsoft PowerPoint files (filters/olefilters/

CVE-2006-6120

Summary

Integer overflow in the KPresenter import filter for Microsoft PowerPoint files (filters/olefilters/lib/klaola.cc) in KOffice before 1.6.1 allows user-assisted remote attackers to execute arbitrary code via a crafted PPT file, which results in a heap-based buffer overflow.

References

Vulnerable Configurations

cpe:2.3:a:kde:koffice:1.6.1:*:*:*:*:*:*:*
cpe:2.3:a:kde:koffice:1.6.1:*:*:*:*:*:*:*

CVSS

Base:	6.8 (as of 17-10-2018 - 21:46)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:M/Au:N/C:P/I:P/A:P

redhat via4

advisories

rhsa

id	RHSA-2007:0010

rpms

koffice-3:1.1.1-2.3
koffice-devel-3:1.1.1-2.3

refmap via4

bid	21354
bugtraq	20061205 [KOffice security advisory] KOffice OLEfilter integer overflow
confirm	http://www.kde.org/info/security/advisory-20061204-1.txt http://www.koffice.org/announcements/changelog-1.6.1.php
gentoo	GLSA-200612-05
mandriva	MDKSA-2006:222
misc	http://websvn.kde.org/branches/koffice/1.6/koffice/filters/olefilters/lib/klaola.cc?rev=607037&r1=566347&r2=607037
sectrack	1017318
secunia	23143 23162 23220 23409 24218
suse	SUSE-SR:2006:029
ubuntu	USN-388-1
vupen	ADV-2006-4771
xf	koffice-readbigblockdepot-overflow(30624)

Last major update

17-10-2018 - 21:46

Published

03-12-2006 - 19:28

Last modified

17-10-2018 - 21:46