Vulnerability in Kde Koffice
CVE-2005-2971
Heap-based buffer overflow in the KWord RTF importer for KOffice 1.2.0 through 1.4.1 allows remote attackers to execute arbitrary code via a crafted RTF file.
EPSS: 0.064 (92.8th percentile) — read the EPSS interpretation.
Affected products
- Kde Koffice — versions 1.2, 1.2.1, 1.3
- N/a — versions n/a
References
- secalert@redhat.com (x_refsource_SECUNIA, third-party-advisory)
- secalert@redhat.com (vdb-entry, x_refsource_SECTRACK)
- secalert@redhat.com (vendor-advisory, x_refsource_SLACKWARE)
- secalert@redhat.com (Exploit, x_refsource_MISC, Vendor Advisory)
- secalert@redhat.com (vendor-advisory, x_refsource_SUSE)
- secalert@redhat.com (x_refsource_SECUNIA, third-party-advisory)
- secalert@redhat.com (vendor-advisory, Patch, x_refsource_GENTOO, Vendor Advisory)
- secalert@redhat.com (x_refsource_SECUNIA, third-party-advisory)
- secalert@redhat.com (x_refsource_SECUNIA, third-party-advisory)
- secalert@redhat.com (vendor-advisory, x_refsource_DEBIAN)