|Category:||Ubuntu Local Security Checks|
|Title:||Ubuntu USN-374-1 (wv)|
|Summary:||Ubuntu USN-374-1 (wv)|
The remote host is missing an update to wv
announced via advisory USN-374-1.
A security issue affects the following Ubuntu releases:
This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.
An integer overflow was discovered in the DOC file parser of the wv
library. By tricking a user into opening a specially crafted MSWord
(.DOC) file, remote attackers could execute arbitrary code with the
The problem can be corrected by upgrading your system to the
following package versions:
In general, a standard system upgrade is sufficient to effect the
Risk factor : High
Common Vulnerability Exposure (CVE) ID: CVE-2006-4513|
SuSE Security Announcement: SUSE-SR:2006:028 (Google Search)
BugTraq ID: 20761
XForce ISS Database: wvware-lfo-lvl-overflow(29833)
|Copyright||Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com|
|This is only one of 40037 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.