CVE-2006-2198

OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to conduct unauthorized activities via an OpenOffice document with a malicious BASIC macro, which is executed without prompting the user.

Published: Jun 30, 2006
Updated: Apr 13, 2023
CVE: CVE-2006-2198
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.6
AV:N/AC:H/Au:N/C:C/I:C/A:C

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
openoffice / openoffice	2.0.0_rc3	2.0.0_rc3.x
openoffice / openoffice	2.0.0	2.0.0.x
openoffice / openoffice	2.0.3_rc4	2.0.3_rc4.x
openoffice / openoffice	1.1.1	1.1.1.x
openoffice / openoffice	1.1.2	1.1.2.x
openoffice / openoffice	2.0.3_rc3	2.0.3_rc3.x
openoffice / openoffice	2.0.2_rc2	2.0.2_rc2.x
openoffice / openoffice	2.0.2_rc3	2.0.2_rc3.x
openoffice / openoffice	2.0.0_rc2	2.0.0_rc2.x
openoffice / openoffice	2.0.0_rc1	2.0.0_rc1.x
openoffice / openoffice	2.0.3_rc5	2.0.3_rc5.x
openoffice / openoffice	1.1.4	1.1.4.x
sun / staroffice	7.0	7.0.x
openoffice / openoffice	2.0.3_rc6	2.0.3_rc6.x
openoffice / openoffice	1.1.0	1.1.0.x
sun / staroffice	8.0	8.0.x
openoffice / openoffice	2.0.2_rc4	2.0.2_rc4.x
openoffice / openoffice	2.0.1	2.0.1.x
openoffice / openoffice	1.1.3	1.1.3.x
openoffice / openoffice	1.1.1a	1.1.1a.x
openoffice / openoffice	1.1.1b	1.1.1b.x
openoffice / openoffice	1.1.5	1.1.5.x
openoffice / openoffice	2.0.2	2.0.2.x
openoffice / openoffice	2.0.2_rc1	2.0.2_rc1.x

Vulnerability Database

289,697

CVE-2006-2198