Vulnerability Details : CVE-2007-0002
Multiple heap-based buffer overflows in WordPerfect Document importer/exporter (libwpd) before 0.8.9 allow user-assisted remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted WordPerfect file in which values to loop counters are not properly handled in the (1) WP3TablesGroup::_readContents and (2) WP5DefinitionGroup_DefineTablesSubGroup::WP5DefinitionGroup_DefineTablesSubGroup functions. NOTE: the integer overflow has been split into CVE-2007-1466.
Vulnerability category: OverflowExecute codeDenial of service
Products affected by CVE-2007-0002
- cpe:2.3:a:libwpd:libwpd_library:*:*:*:*:*:*:*:*
- cpe:2.3:a:libwpd:libwpd_library:0.8.2:*:*:*:*:*:*:*
- cpe:2.3:a:libwpd:libwpd_library:0.8.6:*:*:*:*:*:*:*
- cpe:2.3:a:libwpd:libwpd_library:0.8.7:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2007-0002
21.15%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 96 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2007-0002
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
9.3
|
HIGH | AV:N/AC:M/Au:N/C:C/I:C/A:C |
8.6
|
10.0
|
NIST |
CWE ids for CVE-2007-0002
-
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.Assigned by: nvd@nist.gov (Primary)
References for CVE-2007-0002
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11535
404 Not Found
-
http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.399659
The Slackware Linux Project: Slackware Security Advisories
-
http://www.debian.org/security/2007/dsa-1268
[SECURITY] [DSA 1268-1] New libwpd packages fix arbitrary code execution
-
http://fedoranews.org/cms/node/2805
404 Not Found
-
http://www.securityfocus.com/bid/23006
-
http://www.redhat.com/support/errata/RHSA-2007-0055.html
SupportVendor Advisory
-
http://www.ubuntu.com/usn/usn-437-1
USN-437-1: libwpd vulnerability | Ubuntu security notices | Ubuntu
-
http://www.mandriva.com/security/advisories?name=MDKSA-2007:064
Mandriva
-
http://security.gentoo.org/glsa/glsa-200704-07.xml
libwpd: Multiple vulnerabilities (GLSA 200704-07) — Gentoo security
-
http://www.securitytracker.com/id?1017789
Access Denied
-
http://www.mandriva.com/security/advisories?name=MDKSA-2007:063
Mandriva
-
http://www.vupen.com/english/advisories/2007/0976
Site en constructionVendor Advisory
-
http://www.gentoo.org/security/en/glsa/glsa-200704-12.xml
OpenOffice.org: Multiple vulnerabilities (GLSA 200704-12) — Gentoo security
-
http://www.debian.org/security/2007/dsa-1270
[SECURITY] [DSA 1270-1] New OpenOffice.org packages fix several vulnerabilities
-
http://lists.suse.com/archive/suse-security-announce/2007-Mar/0007.html
Object not found!
-
http://sourceforge.net/project/shownotes.php?release_id=494122
Page not found - SourceForge.net
-
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=490
-
http://www.securityfocus.com/archive/1/463033/100/0/threaded
-
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102863-1
-
http://www.vupen.com/english/advisories/2007/1032
Site en constructionVendor Advisory
-
http://www.vupen.com/english/advisories/2007/1339
Site en constructionVendor Advisory
Jump to