Heap-based Buffer Overflow in KWord RTF Importer by KDE
CVE-2005-2971

Currently unrated

Key Information:

Vendor

Kde

Status
Koffice
Vendor
CVE Published:
20 October 2005

What is CVE-2005-2971?

The KWord RTF importer in KOffice versions 1.2.0 through 1.4.1 is susceptible to a heap-based buffer overflow vulnerability. This issue enables remote attackers to craft malicious RTF files that, when processed by KWord, can lead to arbitrary code execution, posing a significant security risk for users. It's crucial for users of affected KOffice versions to apply the necessary security patches or update their software to mitigate potential threats.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://secunia.com/advisories/17480
third-party-advisoryx_refsource_SECUNIA
http://securitytracker.com/id?1015035
vdb-entryx_refsource_SECTRACK
http://slackware.com/security/viewer.php?l=slackware-secu...
vendor-advisoryx_refsource_SLACKWARE

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.