Note: Authentication is required to detect this vulnerability NOTE: the integer overflow has been split into CVE-2007-1466. Multiple heap-based buffer overflows in WordPerfect Document importer/exporter (libwpd) before 0.8.9 allow user-assisted remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted WordPerfect file in which values to loop counters are not properly handled in the (1) WP3TablesGroup::_readContents and (2) WP5DefinitionGroup_DefineTablesS ubGroup::WP5DefinitionGroup_DefineTablesSubGroup functions. (Based on CVE version 20061101 and SANS Top 20 version 7.) For the current documentation, please log into the mySAINT portal using your customer login and password.
CVE Cross Reference 2007 The information on this page may be obsolete.
0 kommentar(er)
