Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wvware wvware vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2016-9011
The wmf_malloc function in api.c in libwmf 0.2.8.4 allows remote malicious users to cause a denial of service (application crash) via a crafted wmf file, which triggers a memory allocation failure.
Wvware Libwmf 0.2.8.4
NA
CVE-2015-4588
Heap-based buffer overflow in the DecodeImage function in libwmf 0.2.8.4 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted "run-length count" in an image in a WMF file.
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Wvware Libwmf 0.2.8.4
Fedoraproject Fedora 21
NA
CVE-2015-0848
Heap-based buffer overflow in libwmf 0.2.8.4 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted BMP image.
Wvware Libwmf 0.2.8.4
Fedoraproject Fedora 21
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
NA
CVE-2006-4513
Multiple integer overflows in the WV library in wvWare (formerly mswordview) prior to 1.2.3, as used by AbiWord, KWord, and possibly other products, allow user-assisted remote malicious users to execute arbitrary code via a crafted Microsoft Word (DOC) file that produces (1) larg...
Wvware Wvware
NA
CVE-2006-3376
Integer overflow in player.c in libwmf 0.2.8.4, as used in multiple products including (1) wv, (2) abiword, (3) freetype, (4) gimp, (5) libgsf, and (6) imagemagick allows remote malicious users to execute arbitrary code via the MaxRecordSize header field in a WMF file.
Wvware Wv2 0.2.2
Wvware Wv2 0.2.3
Wvware Libwmf 0.2.8 .4
Wvware Wv2 0.2.1
NA
CVE-2006-2197
Integer overflow in wv2 prior to 0.2.3 might allow context-dependent malicious users to execute arbitrary code via a crafted Microsoft Word document.
Wvware Wv2
Wvware Wv2 0.2.2
NA
CVE-2004-0645
Buffer overflow in the wvHandleDateTimePicture function in wv library (wvWare) 0.7.4 up to and including 0.7.6 and 1.0.0 allows remote malicious users to execute arbitrary code via a document with a long DateTime field.
Abisource Community Abiword 2.0.3
Wvware Wvware 1.0
Abisource Community Abiword 2.0.4
Abisource Community Abiword 2.0.5
Wvware Wvware 0.7.5
Wvware Wvware 0.7.6
Abisource Community Abiword 2.0.6
Abisource Community Abiword 2.0.7
Wvware Wvware 0.7.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started