CVE-2006-4513 in wvWareinformazioni

Riassunto

di MITRE

Multiple integer overflows in the WV library in wvWare (formerly mswordview) before 1.2.3, as used by AbiWord, KWord, and possibly other products, allow user-assisted remote attackers to execute arbitrary code via a crafted Microsoft Word (DOC) file that produces (1) large LFO clfolvl values in the wvGetLFO_records function or (2) a large LFO nolfo value in the wvGetFLO_PLF function.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Prenotare

31/08/2006

Divulgazione

27/10/2006

Moderazione

accettato

CPE

pronto

EPSS

0.03385

KEV

no

Attività

molto basso

Fonti

Interested in the pricing of exploits?

See the underground prices here!