| ID |
CVE-2006-4513
|
| Summary |
Multiple integer overflows in the WV library in wvWare (formerly mswordview) before 1.2.3, as used by AbiWord, KWord, and possibly other products, allow user-assisted remote attackers to execute arbitrary code via a crafted Microsoft Word (DOC) file that produces (1) large LFO clfolvl values in the wvGetLFO_records function or (2) a large LFO nolfo value in the wvGetFLO_PLF function. |
| References |
|
| Vulnerable Configurations |
|
| CVSS |
| Base: | 5.1 (as of 20-07-2017 - 01:33) |
| Impact: | |
| Exploitability: | |
|
| CWE |
NVD-CWE-Other |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| NETWORK |
HIGH |
NONE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| PARTIAL |
PARTIAL |
PARTIAL |
|
| cvss-vector
via4
|
AV:N/AC:H/Au:N/C:P/I:P/A:P
|
| refmap
via4
|
| bid | 20761 | | gentoo | GLSA-200612-01 | | idefense | - 20061026 Multiple Vendor wvWare LFO Count Integer Overflow Vulnerability
- 20061026 Multiple Vendor wvWare LVL Count Integer Overflow Vulnerability
| | mandriva | MDKSA-2006:202 | | sectrack | 1017126 | | secunia | - 22595
- 22680
- 22705
- 23273
- 23335
| | suse | SUSE-SR:2006:028 | | ubuntu | USN-374-1 | | vupen | ADV-2006-4221 | | xf | wvware-lfo-lvl-overflow(29833) |
|
| statements
via4
|
| contributor | Mark J Cox | | lastmodified | 2007-02-09 | | organization | Red Hat | | statement | Not vulnerable. This issue did not affect versions of wvWare library included in koffice packages as shipped with Red Hat Enterprise Linux 2.1 |
|
| Last major update |
20-07-2017 - 01:33 |
| Published |
28-10-2006 - 00:07 |
| Last modified |
20-07-2017 - 01:33 |
