Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:9912
HistoryOct 12, 2005 - 12:00 a.m.

[KDE Security Advisory] KOffice/KWord RTF import buffer overflow

2005-10-1200:00:00
vulners.com
14

0.168 Low

EPSS

Percentile

96.1%

JSON

KDE Security Advisory: KWord RTF import buffer overflow
Original Release Date: 2005-10-11
URL: http://www.kde.org/info/security/advisory-20051011-1.txt

  1. References

     CAN-2005-2971
 CESA-2005-005

  2. Systems affected:

     All KOffice releases starting from KOffice 1.2.0 up to
 including KOffice 1.4.1.

  3. Overview:

     Chris Evans reported a heap based buffer overflow in
 the RTF importer of KWord.

  4. Impact:

     Opening specially crafted RTF files in KWord can cause
 execution of abitrary code.

  5. Solution:

     Source code patches have been made available which fix these
 vulnerabilities. Contact your OS vendor / binary package provider
 for information about how to obtain updated binary packages.

  6. Patch:

     Patch for KOffice 1.4.1 is available from 
 ftp://ftp.kde.org/pub/kde/security_patches :

 9f77b327119fd1db0752dab785e2a975  post-koffice-1.4.1-rtfimport.diff

 Patch for KOffice 1.3.5 is available from 
 ftp://ftp.kde.org/pub/kde/security_patches :

 71a1baa8244dbcc1bfc2bd3c3e3dd40f  post-koffice-1.3.5-rtfimport.diff

 Patch for KOffice 1.2.1 is available from 
 ftp://ftp.kde.org/pub/kde/security_patches :

 b36488a186aded0f5e812397af3c689a  post-koffice-1.2.1-rtfimport.diff

Related

nessus 6
openvas 7
slackware 1
nvd 1
gentoo 1
ubuntu 1
cve 1
ubuntucve 1
cvelist 1
debian 2
nessus
nessus
Slackware 10.0 / 10.1 / 10.2 / 9.1 / current : KOffice/KWord (SSA:2005-310-02)
2005-11-07 00:00:00
Mandrake Linux Security Advisory : koffice (MDKSA-2005:185)
2006-01-15 00:00:00
Ubuntu 5.04 : koffice vulnerability (USN-202-1)
2006-01-15 00:00:00
openvas
openvas
Debian Security Advisory DSA 872-1 (koffice)
2008-01-17 00:00:00
Slackware Advisory SSA:2005-310-02 KOffice/KWord
2012-09-11 00:00:00
Debian: Security Advisory (DSA-872-1)
2008-01-17 00:00:00
slackware
slackware
[slackware-security] KOffice/KWord
2005-11-06 21:02:58
nvd
nvd
CVE-2005-2971
2005-10-20 10:02:00
gentoo
gentoo
KOffice, KWord: RTF import buffer overflow
2005-10-14 00:00:00
ubuntu
ubuntu
KOffice vulnerability
2005-10-12 00:00:00
cve
cve
CVE-2005-2971
2005-10-20 10:02:00
ubuntucve
ubuntucve
CVE-2005-2971
2005-10-20 00:00:00
cvelist
cvelist
CVE-2005-2971
2005-10-20 04:00:00
debian
debian
[SECURITY] [DSA 872-1] New koffice packages fix arbitrary code execution
2005-10-26 09:42:09
[SECURITY] [DSA 872-1] New koffice packages fix arbitrary code execution
2005-10-26 09:42:09

0.168 Low

EPSS

Percentile

96.1%

JSON
Related for SECURITYVULNS:DOC:9912
nessus6openvas7slackware1nvd1gentoo1ubuntu1cve1ubuntucve1cvelist1debian2