CVE-2007-1466 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-1466
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-1466

Description: Integer overflow in the WP6GeneralTextPacket::_readContents function in WordPerfect Document importer/exporter (libwpd) before 0.8.9 allows user-assisted remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted WordPerfect file, a different vulnerability than CVE-2007-0002.

CVE Status: Candidate

References: UBUNTU http://www.ubuntu.com/usn/usn-437-1 SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-102863-1 ST 1017789 SAID Secunia Advisory: SA24588 Secunia Advisory: SA24856 Secunia Advisory: SA24794 Secunia Advisory: SA24550 Secunia Advisory: SA24581 Secunia Advisory: SA24557 Secunia Advisory: SA24572 Secunia Advisory: SA24580 Secunia Advisory: SA24573 Secunia Advisory: SA24507 REDHAT http://www.redhat.com/support/errata/RHSA-2007-0055.html http://www.redhat.com/support/errata/RHSA-2007-0033.html MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2007:063 http://www.mandriva.com/security/advisories?name=MDKSA-2007:064 IDEFENSE http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=490 GENTOO http://security.gentoo.org/glsa/glsa-200704-07.xml FEDORA http://fedoranews.org/cms/node/2805 DEBIAN http://www.debian.org/security/2007/dsa-1268 CONFIRM http://sourceforge.net/project/shownotes.php?release_id=494122 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/463033/100/0/threaded BID 23006

Return to the previous page.