Vulnerability CVE-2004-0645 - CERT Civis.Net

Vulnerability Name:

CVE-2004-0645 (CCN-16660)

Assigned:

2004-07-09

Published:

2004-07-09

Updated:

2017-07-11

Summary:

Buffer overflow in the wvHandleDateTimePicture function in wv library (wvWare) 0.7.4 through 0.7.6 and 1.0.0 allows remote attackers to execute arbitrary code via a document with a long DateTime field.

CVSS v3 Severity:

10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

10.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: CCN
Type: Full-Disclosure Mailing List, Fri Jul 09 2004 - 09:39:48 CDT
wvWare Library Buffer Overflow Vulnerability

Source: CONFIRM
Type: UNKNOWN
http://cpan.cybercomm.nl/pub/gentoo-portage/app-text/wv/files/wv-1.0.0-fix_overflow.patch

Source: MITRE
Type: CNA
CVE-2004-0645

Source: CONECTIVA
Type: UNKNOWN
CLA-2004:863

Source: CCN
Type: Conectiva Linux Security Announcement CLSA-2004:863
Fix for buffer overflow vulnerability

Source: CCN
Type: Conectiva Linux Security Announcement CLSA-2004:902
Fix for buffer overflow vulnerability

Source: GENTOO
Type: Patch, Vendor Advisory
GLSA-200407-11

Source: CCN
Type: wvWare Web page
wvWare, library for converting Word documents

Source: CCN
Type: AbiWord Download Web page
AbiWord Downloads

Source: DEBIAN
Type: UNKNOWN
DSA-579

Source: DEBIAN
Type: DSA-550
wv -- buffer overflow

Source: DEBIAN
Type: DSA-579
abiword -- buffer overflow

Source: CONFIRM
Type: UNKNOWN
http://www.freebsd.org/ports/portaudit/7a5430df-d562-11d8-b479-02e0185c0b53.html

Source: CCN
Type: GLSA-200407-11
wv: Buffer overflow vulnerability

Source: IDEFENSE
Type: Exploit, Patch, Vendor Advisory
20040709 wvWare Library Buffer Overflow Vulnerability

Source: CCN
Type: iDEFENSE Security Advisory 07.09.04
wvWare Library Buffer Overflow Vulnerability

Source: MANDRAKE
Type: UNKNOWN
MDKSA-2004:077

Source: OSVDB
Type: UNKNOWN
7761

Source: CCN
Type: OSVDB ID: 7761
wv Library Document DateTime Field Overflow

Source: CCN
Type: BID-10699
wvWare Library Field.c WVHANDLEDATETIMEPICTURE Function Remote Buffer Overflow Vulnerability

Source: FEDORA
Type: UNKNOWN
FLSA:1906

Source: XF
Type: UNKNOWN
wvware-wvhandledatetimepicture-bo(16660)

Source: XF
Type: UNKNOWN
wvware-wvhandledatetimepicture-bo(16660)

Vulnerable Configuration:

Configuration 1:

cpe:/a:abisource:community_abiword:2.0.3:*:*:*:*:*:*:*

OR cpe:/a:abisource:community_abiword:2.0.4:*:*:*:*:*:*:*

OR cpe:/a:abisource:community_abiword:2.0.5:*:*:*:*:*:*:*

OR cpe:/a:abisource:community_abiword:2.0.6:*:*:*:*:*:*:*

OR cpe:/a:abisource:community_abiword:2.0.7:*:*:*:*:*:*:*

OR cpe:/a:wvware:wvware:0.7.4:*:*:*:*:*:*:*

OR cpe:/a:wvware:wvware:0.7.5:*:*:*:*:*:*:*

OR cpe:/a:wvware:wvware:0.7.6:*:*:*:*:*:*:*

OR cpe:/a:wvware:wvware:1.0:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.debian:def:579	V	buffer overflow	2004-11-01
oval:org.debian:def:550	V	buffer overflow	2004-09-20