Lucene search

Ubuntu.comUB:CVE-2006-2197

HistoryJun 15, 2006 - 12:00 a.m.

CVE-2006-2197

2006-06-1500:00:00

ubuntu.com

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.011 Low

EPSS

Percentile

84.2%

JSON

Integer overflow in wv2 before 0.2.3 might allow context-dependent
attackers to execute arbitrary code via a crafted Microsoft Word document.

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchwv2< 0.2.2-5ubuntu0.1UNKNOWN
ubuntu6.10noarchwv2< 0.2.3-1UNKNOWN
ubuntu7.04noarchwv2< 0.2.3-1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	6.06	noarch	wv2	< 0.2.2-5ubuntu0.1	UNKNOWN
ubuntu	6.10	noarch	wv2	< 0.2.3-1	UNKNOWN
ubuntu	7.04	noarch	wv2	< 0.2.3-1	UNKNOWN

References

launchpad.net/bugs/cve/CVE-2006-2197

nvd.nist.gov/vuln/detail/CVE-2006-2197

security-tracker.debian.org/tracker/CVE-2006-2197

ubuntu.com/security/notices/USN-300-1

www.cve.org/CVERecord?id=CVE-2006-2197

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.011 Low

EPSS

Percentile

84.2%

JSON

Related for UB:CVE-2006-2197