Staroffice

This hub aggregates every CVE we track for Staroffice, a product in the operating systems space. Use it to gauge the current risk picture and drill into individual advisories.

Operating Systemson-premos

CVEs tracked

Critical

High

In CISA KEV

Severity distribution

HIGH3MEDIUM3CRITICAL3LOW1

Monthly trend

2024-072026-06

Latest CVEs

See all →

The 10 most recently published vulnerabilities affecting Staroffice.

CVE-2007-2834Integer overflow in the TIFF parser in OpenOffice.org (OOo) before 2.3; and Sun StarOffice 6, 7, and 8 Office Suite (StarSuite); allows remote attackers to execute arbitrary code via a TIFF file wi...9.3Sep 18, 2007
CVE-2006-5870Multiple integer overflows in OpenOffice.org (OOo) 2.0.4 and earlier, and possibly other versions before 2.1.0; and StarOffice 6 through 8; allow user-assisted remote attackers to execute arbitrary...9.3Jan 4, 2007
CVE-2006-5201Multiple packages on Sun Solaris, including (1) NSS; (2) Java JDK and JRE 5.0 Update 8 and earlier, SDK and JRE 1.4.x up to 1.4.2_12, and SDK and JRE 1.3.x up to 1.3.1_19; (3) JSSE 1.0.3_03 and ear...4.0Oct 9, 2006
CVE-2006-3117Heap-based buffer overflow in OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to execute arbitrary code via a crafted OpenOffice XML document...7.6Jun 30, 2006
CVE-2006-2199Unspecified vulnerability in Java Applets in OpenOffice.org 1.1.x (aka StarOffice) up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to escape the Java sandbox and conduct unauthori...7.6Jun 30, 2006
CVE-2006-2198OpenOffice.org (aka StarOffice) 1.1.x up to 1.1.5 and 2.0.x before 2.0.3 allows user-assisted attackers to conduct unauthorized activities via an OpenOffice document with a malicious BASIC macro, w...7.6Jun 30, 2006
CVE-2000-1156StarOffice 5.2 follows symlinks and sets world-readable permissions for the /tmp/soffice.tmp directory, which allows a local user to read files of the user who is using StarOffice.3.6Dec 19, 2000
CVE-2000-0174StarOffice StarScheduler web server allows remote attackers to read arbitrary files via a .. (dot dot) attack.5.0Jul 12, 2000
CVE-2000-0175Buffer overflow in StarOffice StarScheduler web server allows remote attackers to gain root access via a long GET command.10.0Jul 12, 2000
CVE-2000-0291Buffer overflow in Star Office 5.1 allows attackers to cause a denial of service by embedding a long URL within a document.4.6Apr 26, 2000

Product normalization is registry-driven with AI assist and human review. How it works