What is the severity of CVE-2007-1466?

CVE-2007-1466 is classified as a moderate severity vulnerability due to its potential to cause application crashes and execute arbitrary code.

How do I fix CVE-2007-1466?

To fix CVE-2007-1466, upgrade the WordPerfect Document importer/exporter to version 0.8.9 or later.

What systems are affected by CVE-2007-1466?

CVE-2007-1466 affects versions of the WordPerfect Document importer/exporter prior to 0.8.9.

What type of attack is associated with CVE-2007-1466?

CVE-2007-1466 is associated with user-assisted remote attacks that exploit crafted WordPerfect files.

Can CVE-2007-1466 lead to arbitrary code execution?

Yes, CVE-2007-1466 may allow attackers to execute arbitrary code through a specially crafted WordPerfect file.

Vulnerability/
CVE-2007-1466

medium

6.8

CWE

189 190

16/3/2007

7/8/2024

CVE-2007-1466: Integer Overflow

First published: Fri Mar 16 2007(Updated: )

Integer overflow in the WP6GeneralTextPacket::_readContents function in WordPerfect Document importer/exporter (libwpd) before 0.8.9 allows user-assisted remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted WordPerfect file, a different vulnerability than CVE-2007-0002.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Sourceforge Wordperfect Document Importer-exporter	<=0.8.8

Remedy

http://www.securityfocus.com/bid/23006

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2007-1466?
CVE-2007-1466 is classified as a moderate severity vulnerability due to its potential to cause application crashes and execute arbitrary code.
How do I fix CVE-2007-1466?
To fix CVE-2007-1466, upgrade the WordPerfect Document importer/exporter to version 0.8.9 or later.
What systems are affected by CVE-2007-1466?
CVE-2007-1466 affects versions of the WordPerfect Document importer/exporter prior to 0.8.9.
What type of attack is associated with CVE-2007-1466?
CVE-2007-1466 is associated with user-assisted remote attacks that exploit crafted WordPerfect files.
Can CVE-2007-1466 lead to arbitrary code execution?
Yes, CVE-2007-1466 may allow attackers to execute arbitrary code through a specially crafted WordPerfect file.

collector/nvd-historical
collector/nvd-index
agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/weakness
agent/remedy
agent/last-modified-date
agent/author
agent/tags
agent/description
agent/first-publish-date
agent/event
agent/source
vendor/sourceforge
canonical/sourceforge wordperfect document importer-exporter
version/sourceforge wordperfect document importer-exporter/0.8.8

Frequently Asked Questions

What is the severity of CVE-2007-1466?
CVE-2007-1466 is classified as a moderate severity vulnerability due to its potential to cause application crashes and execute arbitrary code.
How do I fix CVE-2007-1466?
To fix CVE-2007-1466, upgrade the WordPerfect Document importer/exporter to version 0.8.9 or later.
What systems are affected by CVE-2007-1466?
CVE-2007-1466 affects versions of the WordPerfect Document importer/exporter prior to 0.8.9.
What type of attack is associated with CVE-2007-1466?
CVE-2007-1466 is associated with user-assisted remote attacks that exploit crafted WordPerfect files.
Can CVE-2007-1466 lead to arbitrary code execution?
Yes, CVE-2007-1466 may allow attackers to execute arbitrary code through a specially crafted WordPerfect file.

CVE-2007-1466: Integer Overflow

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2007-1466?

How do I fix CVE-2007-1466?

What systems are affected by CVE-2007-1466?

What type of attack is associated with CVE-2007-1466?

Can CVE-2007-1466 lead to arbitrary code execution?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2007-1466?

How do I fix CVE-2007-1466?

What systems are affected by CVE-2007-1466?

What type of attack is associated with CVE-2007-1466?

Can CVE-2007-1466 lead to arbitrary code execution?