PublicDate: 2006-10-28 00:07:00 UTC
Candidate: CVE-2006-4513
References:
 https://ubuntu.com/security/notices/USN-374-1
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4513
Description:
 Multiple integer overflows in the WV library in wvWare (formerly
 mswordview) before 1.2.3, as used by AbiWord, KWord, and possibly other
 products, allow user-assisted remote attackers to execute arbitrary code
 via a crafted Microsoft Word (DOC) file that produces (1) large LFO clfolvl
 values in the wvGetLFO_records function or (2) a large LFO nolfo value in
 the wvGetFLO_PLF function.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_wv: released (1.0.2-0.1ubuntu0.6.06)
edgy_wv: released (1.2.1-2ubuntu0.1)
feisty_wv: released (1.2.4-2)
devel_wv: released (1.2.4-2)
upstream_wv: needs-triage