9 matches found
CVE-2006-4513
Multiple integer overflows in the WV library in wvWare formerly mswordview before 1.2.3, as used by AbiWord, KWord, and possibly other products, allow user-assisted remote attackers to execute arbitrary code via a crafted Microsoft Word DOC file that produces 1 large LFO clfolvl values in the...
Gentoo Security Advisory GLSA 200612-01 (wv library)
The remote host is missing updates announced in advisory GLSA 200612-01. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
SuSE 10 Security Update : wv (ZYPP Patch Number 2280)
Two integer overflows were found in the Microsoft Word converter library 'wv', which could potentially be used to crash programs using this library or to even execute code. - A LVL Count Integer Overflow Vulnerability was fixed. - A LFO Count Integer Overflow Vulnerability was fixed. Both problem...
openSUSE 10 Security Update : wv (wv-2279)
Two integer overflows were found in the Microsoft Word converter library 'wv', which could potentially be used to crash programs using this library or to even execute code. - A LVL Count Integer Overflow Vulnerability was fixed. - A LFO Count Integer Overflow Vulnerability was fixed. Both problem...
iDefense Security Advisory 10.26.06: Multiple Vendor wvWare LVL Count Integer Overflow Vulnerability
Multiple Vendor wvWare LVL Count Integer Overflow Vulnerability iDefense Security Advisory 10.26.06 http://www.idefense.com/intelligence/vulnerabilities/ Oct 26, 2006 I. BACKGROUND The WV library provides an interface to facilitate access to binary file format Microsoft Word documents. The projec...
CVE-2006-4513
Multiple integer overflows in the WV library in wvWare formerly mswordview before 1.2.3, as used by AbiWord, KWord, and possibly other products, allow user-assisted remote attackers to execute arbitrary code via a crafted Microsoft Word DOC file that produces 1 large LFO clfolvl values in the...
CVE-2006-4513
Multiple integer overflows in the WV library in wvWare formerly mswordview before 1.2.3, as used by AbiWord, KWord, and possibly other products, allow user-assisted remote attackers to execute arbitrary code via a crafted Microsoft Word DOC file that produces 1 large LFO clfolvl values in the...
CVE-2006-4513
CVE-2006-4513 affects the WV library used by wvWare (formerly mswordview). The issue is two integer overflow flaws in the Word converter: LVL count and LFO count (wvGetLFO_records and wvGetFLO_PLF), exploitable via crafted DOC files to execute code. Affected products include AbiWord and KWord (an...
CVE-2006-4513
Multiple integer overflows in the WV library in wvWare formerly mswordview before 1.2.3, as used by AbiWord, KWord, and possibly other products, allow user-assisted remote attackers to execute arbitrary code via a crafted Microsoft Word DOC file that produces 1 large LFO clfolvl values in the...