Lucene search
K

208 matches found

Check Point Advisories
Check Point Advisories
added 2013/11/12 12:0 a.m.18 views

Microsoft Word WPD Remote Code Execution (MS13-091; CVE-2013-1324; CVE-2013-1325)

A remote code execution vulnerability exists in the way that affected Microsoft Office software parses WordPerfect files. The vulnerability is caused when Microsoft Office does not properly process a specially crafted WordPerfect file. Exploitation of this vulnerability requires a user to open a...

9.3CVSS6.9AI score0.31433EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2013/09/10 12:0 a.m.1 views

WPD files

WordPerfect documents have common file extensions ".WP" and ".WPD", which is used by Corel's proprietary word processing application, WordPerfect. Its popularity was based on the fact that it had been available for a wide variety of computers and operation systems, including Mac OS, Linux, and...

6.9AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2013/06/30 12:0 a.m.3 views

Corel WordPerfect Document Processing Buffer Overflow (CVE-2012-4900)

A heap memory corruption vulnerability has been reported in Corel WordPerfect...

5.9AI score0.0207EPSS
Exploits1
securityvulns
securityvulns
added 2013/03/10 12:0 a.m.42 views

Untrusted Pointer Dereference Vulnerability in Corel WordPerfect X6

Advisory ID: HTB23114 Product: Corel WordPerfect X6 Standard Edition Vendor: Corel Corporation Vulnerable Versions: 16.0.0.388, other versions may be also affected Tested Version: 16.0.0.388 on Windows 7 SP1 32 bits Vendor Notification: September 12, 2012 Public Disclosure: March 7, 2013...

0.0207EPSS
Exploits1
securityvulns
securityvulns
added 2013/03/10 12:0 a.m.35 views

Corel WordPerfect uninitialized pointer dereference

User-controlled pointer dereferences on WPD parsing...

3.8AI score0.0207EPSS
Exploits1References1
Packet Storm
Packet Storm
added 2013/03/08 12:0 a.m.45 views

Corel WordPerfect X6 Standard Edition Untrusted Pointer Dereference

Advisory ID: HTB23114 Product: Corel WordPerfect X6 Standard Edition Vendor: Corel Corporation Vulnerable Versions: 16.0.0.388, other versions may be also affected Tested Version: 16.0.0.388 on Windows 7 SP1 32 bits Vendor Notification: September 12, 2012 Public Disclosure: March 7, 2013...

0.6AI score0.0207EPSS
Exploits1
Zero Day Initiative
Zero Day Initiative
added 2012/12/21 12:0 a.m.15 views

Oracle Outside In WordPerfect File Processing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable products utilizing the Oracle Outside In technology. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...

10CVSS3.7AI score
Exploits0References1
htbridge
htbridge
added 2012/09/12 12:0 a.m.43 views

Untrusted Pointer Dereference Vulnerability in Corel WordPerfect X6

High-Tech Bridge Security Research Lab discovered an untrusted pointer dereference vulnerability in Corel WordPerfect. Opening of a malicious WPD WordPerfect Document causes immediate application crash, resulting in a loss of all unsaved current application data of the user. 1 Untrusted Pointer...

2.6CVSS5.5AI score0.0207EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.21 views

Scientific Linux Security Update : libwpd on SL5.x i386/x86_64 (20120626)

libwpd is a library for reading and converting Corel WordPerfect Office documents. A buffer overflow flaw was found in the way libwpd processed certain Corel WordPerfect Office documents .wpd files. An attacker could provide a specially crafted .wpd file that, when opened in an application linked...

7.5CVSS6.2AI score0.13391EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2012/06/27 12:0 a.m.36 views

RHEL 5 : libwpd (RHSA-2012:1043)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2012:1043 advisory. - libwpd: Memory overwrite flaw by processing certain WordPerfect WPD documents CVE-2012-2149 Note that Nessus has not tested for this issue but has...

7.5CVSS5.5AI score0.13391EPSS
Exploits2References4
Cent OS
Cent OS
added 2012/06/26 5:53 p.m.65 views

libwpd security update

CentOS Errata and Security Advisory CESA-2012:1043 Updated libwpd packages that fix one security issue are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base...

7.5CVSS6.3AI score0.13391EPSS
Exploits2References7
RedHat Linux
RedHat Linux
added 2012/06/26 5:16 p.m.28 views

Important: Red Hat Security Advisory: libwpd security update

Updated libwpd packages that fix one security issue are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.5CVSS6.3AI score0.13391EPSS
Exploits2References2
RedHat Linux
RedHat Linux
added 2012/06/26 5:16 p.m.6 views

libwpd: Memory overwrite flaw by processing certain WordPerfect (WPD) documents

The WPXContentListener::closeTableRow function in WPXContentListener.cpp in libwpd 0.8.8, as used by OpenOffice.org OOo before 3.4, allows remote attackers to execute arbitrary code via a crafted Wordperfect .WPD document that causes a negative array index to be used. NOTE: some sources report th...

7.5CVSS6.3AI score0.13391EPSS
Exploits2References4
NVD
NVD
added 2012/06/21 3:55 p.m.16 views

CVE-2012-2149

The WPXContentListener::closeTableRow function in WPXContentListener.cpp in libwpd 0.8.8, as used by OpenOffice.org OOo before 3.4, allows remote attackers to execute arbitrary code via a crafted Wordperfect .WPD document that causes a negative array index to be used. NOTE: some sources report th...

7.5CVSS6.8AI score0.13391EPSS
Exploits2References10
OSV
OSV
added 2012/06/21 3:55 p.m.6 views

CVE-2012-2149

The WPXContentListener::closeTableRow function in WPXContentListener.cpp in libwpd 0.8.8, as used by OpenOffice.org OOo before 3.4, allows remote attackers to execute arbitrary code via a crafted Wordperfect .WPD document that causes a negative array index to be used. NOTE: some sources report th...

7.5CVSS7.3AI score0.13391EPSS
Exploits2References11
OSV
OSV
added 2012/06/21 3:55 p.m.2 views

DEBIAN-CVE-2012-2149

The WPXContentListener::closeTableRow function in WPXContentListener.cpp in libwpd 0.8.8, as used by OpenOffice.org OOo before 3.4, allows remote attackers to execute arbitrary code via a crafted Wordperfect .WPD document that causes a negative array index to be used. NOTE: some sources report th...

7.5CVSS7.9AI score0.13391EPSS
Exploits2References1
UbuntuCve
UbuntuCve
added 2012/06/21 3:55 p.m.24 views

CVE-2012-2149

The WPXContentListener::closeTableRow function in WPXContentListener.cpp in libwpd 0.8.8, as used by OpenOffice.org OOo before 3.4, allows remote attackers to execute arbitrary code via a crafted Wordperfect .WPD document that causes a negative array index to be used. NOTE: some sources report th...

7.5CVSS6.2AI score0.13391EPSS
Exploits2References2
Prion
Prion
added 2012/06/21 3:55 p.m.19 views

Integer overflow

The WPXContentListener::closeTableRow function in WPXContentListener.cpp in libwpd 0.8.8, as used by OpenOffice.org OOo before 3.4, allows remote attackers to execute arbitrary code via a crafted Wordperfect .WPD document that causes a negative array index to be used. NOTE: some sources report th...

7.5CVSS7.9AI score0.13391EPSS
Exploits2References10Affected Software3
CVE
CVE
added 2012/06/21 3:0 p.m.104 views

CVE-2012-2149

CVE-2012-2149 affects the libwpd library (used by OpenOffice.org prior to 3.4). The vulnerability stems from a memory corruption risk in WPXContentListener::_closeTableRow (reported as a negative array index or integer overflow), allowing remote code execution via crafted WordPerfect .WPD documen...

7.5CVSS6.6AI score0.13391EPSS
Exploits2References10Affected Software2
Cvelist
Cvelist
added 2012/06/21 3:0 p.m.30 views

CVE-2012-2149

The WPXContentListener::closeTableRow function in WPXContentListener.cpp in libwpd 0.8.8, as used by OpenOffice.org OOo before 3.4, allows remote attackers to execute arbitrary code via a crafted Wordperfect .WPD document that causes a negative array index to be used. NOTE: some sources report th...

6.7AI score0.13391EPSS
Exploits2References10
Rows per page
Query Builder