CVE-2006-3117

Name: CVE-2006-3117
Creator: NVD / NIST
Published: 2006-06-30T18:05:00+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 4.27%

Last modified Jun 16, 2026

CVE-2006-3117 is a vulnerability of currently unknown severity. Heap-based buffer overflow in OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to execute arbitrary code via a crafted OpenOffice XML document that is not properly handled by (1) Calc, (2) Draw, (3) Impress, (4) Math, or (5) Writer, aka "File Format / Buffer Overflow Vulnerability.". EPSS estimates a 4.27% chance of exploitation in the next 30 days.

Description

Heap-based buffer overflow in OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to execute arbitrary code via a crafted OpenOffice XML document that is not properly handled by (1) Calc, (2) Draw, (3) Impress, (4) Math, or (5) Writer, aka "File Format / Buffer Overflow Vulnerability."

Metrics

EPSS Probability

4.27%

89.8th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-119

Affected Software

Vendor	Product	Versions
Openoffice	Openoffice	1.1.0
Openoffice	Openoffice	1.1.1
Openoffice	Openoffice	1.1.2
Openoffice	Openoffice	1.1.3
Openoffice	Openoffice	1.1.4
Openoffice	Openoffice	2.0
Openoffice	Openoffice	2.0.0
Openoffice	Openoffice	2.0.1
Openoffice	Openoffice	2.0.2
Sun	Staroffice	6.0
Sun	Staroffice	7.0
Sun	Staroffice	8.0

References

http://fedoranews.org/cms/node/2343
http://secunia.com/advisories/20867Vendor Advisory
http://secunia.com/advisories/20893Vendor Advisory
http://secunia.com/advisories/20910Vendor Advisory
http://secunia.com/advisories/20911Vendor Advisory
http://secunia.com/advisories/20913Vendor Advisory
http://secunia.com/advisories/20975Vendor Advisory
http://secunia.com/advisories/20995Vendor Advisory
http://secunia.com/advisories/21278Vendor Advisory
http://secunia.com/advisories/22129Vendor Advisory
http://secunia.com/advisories/23620Vendor Advisory
http://security.gentoo.org/glsa/glsa-200607-12.xml
http://securitytracker.com/id?1016414
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102501-1Patch
http://www.debian.org/security/2006/dsa-1104
http://www.mandriva.com/security/advisories?name=MDKSA-2006:118
http://www.ngssoftware.com/advisories/openoffice.txtPatch
http://www.novell.com/linux/security/advisories/2006_40_openoffice.html
http://www.openoffice.org/security/CVE-2006-3117.htmlPatch
http://www.redhat.com/support/errata/RHSA-2006-0573.htmlVendor Advisory
http://www.securityfocus.com/archive/1/447035/100/0/threaded
http://www.securityfocus.com/bid/18739
http://www.ubuntu.com/usn/usn-313-1
http://www.ubuntu.com/usn/usn-313-2
http://www.vupen.com/english/advisories/2006/2607Vendor Advisory
http://www.vupen.com/english/advisories/2006/2621Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/27571
https://issues.rpath.com/browse/RPL-475
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9704
http://fedoranews.org/cms/node/2343
http://secunia.com/advisories/20867Vendor Advisory
http://secunia.com/advisories/20893Vendor Advisory
http://secunia.com/advisories/20910Vendor Advisory
http://secunia.com/advisories/20911Vendor Advisory
http://secunia.com/advisories/20913Vendor Advisory
http://secunia.com/advisories/20975Vendor Advisory
http://secunia.com/advisories/20995Vendor Advisory
http://secunia.com/advisories/21278Vendor Advisory
http://secunia.com/advisories/22129Vendor Advisory
http://secunia.com/advisories/23620Vendor Advisory
http://security.gentoo.org/glsa/glsa-200607-12.xml
http://securitytracker.com/id?1016414
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102501-1Patch
http://www.debian.org/security/2006/dsa-1104
http://www.mandriva.com/security/advisories?name=MDKSA-2006:118
http://www.ngssoftware.com/advisories/openoffice.txtPatch
http://www.novell.com/linux/security/advisories/2006_40_openoffice.html
http://www.openoffice.org/security/CVE-2006-3117.htmlPatch
http://www.redhat.com/support/errata/RHSA-2006-0573.htmlVendor Advisory
http://www.securityfocus.com/archive/1/447035/100/0/threaded
http://www.securityfocus.com/bid/18739
http://www.ubuntu.com/usn/usn-313-1
http://www.ubuntu.com/usn/usn-313-2
http://www.vupen.com/english/advisories/2006/2607Vendor Advisory
http://www.vupen.com/english/advisories/2006/2621Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/27571
https://issues.rpath.com/browse/RPL-475
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9704

Timeline

Published: Jun 30, 2006
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2006-3117?

How severe is CVE-2006-3117?

Severity scoring for CVE-2006-3117 is pending analysis. The EPSS model estimates a 4.27% probability of exploitation in the next 30 days.

How do I fix CVE-2006-3117?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2006-3117?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST