Lucene search
UbuntuUSN-203-1HistoryOct 13, 2005 - 12:00 a.m.
Abiword vulnerabilities
2005-10-1300:00:00
ubuntu.com
22
CVSS2
5.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
AI Score
6.7
Confidence
Low
EPSS
0.018
Percentile
88.3%
Releases
- Ubuntu 5.04
- Ubuntu 4.10
Details
Chris Evans discovered several buffer overflows in the RTF import
module of AbiWord. By tricking a user into opening an RTF file with
specially crafted long identifiers, an attacker could exploit this to
execute arbitrary code with the privileges of the AbiWord user.
References
Related
gentoo
gentoo
AbiWord: New RTF import buffer overflows
2005-10-20 00:00:00
nessus
nessus
GLSA-200510-17 : AbiWord: New RTF import buffer overflows
2005-10-24 00:00:00
Ubuntu 4.10 / 5.04 : abiword vulnerabilities (USN-203-1)
2006-01-15 00:00:00
Fedora Core 3 : abiword-2.0.12-11 (2005-989)
2005-10-19 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200510-17 (AbiWord)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200510-17 (AbiWord)
2008-09-24 00:00:00
Debian Security Advisory DSA 894-1 (abiword)
2008-01-17 00:00:00
freebsd
freebsd
abiword, koffice -- stack based buffer overflow vulnerabilities
2005-10-14 00:00:00
ubuntucve
ubuntucve
CVE-2005-2972
2005-10-23 00:00:00
debian
debian
[SECURITY] [DSA 894-1] New AbiWord packages fix arbitrary code execution
2005-11-14 13:44:04
[SECURITY] [DSA 894-1] New AbiWord packages fix arbitrary code execution
2005-11-14 13:44:04
debiancve
debiancve
CVE-2005-2972
2005-10-23 10:02:00
cvelist
cvelist
CVE-2005-2972
2005-10-23 04:00:00
cve
cve
CVE-2005-2972
2005-10-23 10:02:00
nvd
nvd
CVE-2005-2972
2005-10-23 10:02:00
CVSS2
5.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
AI Score
6.7
Confidence
Low
EPSS
0.018
Percentile
88.3%
Related for USN-203-1