9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.211 Low
EPSS
Percentile
96.3%
Multiple heap-based buffer overflows in WordPerfect Document
importer/exporter (libwpd) before 0.8.9 allow user-assisted remote
attackers to cause a denial of service (application crash) and possibly
execute arbitrary code via a crafted WordPerfect file in which values to
loop counters are not properly handled in the (1)
WP3TablesGroup::_readContents and (2)
WP5DefinitionGroup_DefineTablesSubGroup::WP5DefinitionGroup_DefineTablesSubGroup
functions. NOTE: the integer overflow has been split into CVE-2007-1466.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 6.06 | noarch | libwpd | < 0.8.4-2ubuntu0.1 | UNKNOWN |
ubuntu | 6.10 | noarch | libwpd | < 0.8.6-1ubuntu0.1 | UNKNOWN |
ubuntu | 7.04 | noarch | libwpd | < 0.8.9-1 | UNKNOWN |
ubuntu | 6.06 | noarch | openoffice.org | < 2.0.2-2ubuntu12.4 | UNKNOWN |
ubuntu | 6.10 | noarch | openoffice.org | < 2.0.4-0ubuntu6 | UNKNOWN |
ubuntu | 7.04 | noarch | openoffice.org | < 2.2.0-1ubuntu4 | UNKNOWN |
ubuntu | 6.06 | noarch | openoffice.org-amd64 | < 2.0.2-2ubuntu12.4-1 | UNKNOWN |
ubuntu | 7.04 | noarch | openoffice.org-l10n | < 2.2.0-0ubuntu2 | UNKNOWN |