Unrated severityNVD Advisory· Published Oct 20, 2005· Updated Apr 16, 2026
CVE-2005-2971
CVE-2005-2971
Description
Heap-based buffer overflow in the KWord RTF importer for KOffice 1.2.0 through 1.4.1 allows remote attackers to execute arbitrary code via a crafted RTF file.
Affected products
13cpe:2.3:a:kde:koffice:1.2:*:*:*:*:*:*:*+ 12 more
- cpe:2.3:a:kde:koffice:1.2:*:*:*:*:*:*:*
- cpe:2.3:a:kde:koffice:1.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:kde:koffice:1.3:*:*:*:*:*:*:*
- cpe:2.3:a:kde:koffice:1.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:kde:koffice:1.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:kde:koffice:1.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:kde:koffice:1.3.4:*:*:*:*:*:*:*
- cpe:2.3:a:kde:koffice:1.3.5:*:*:*:*:*:*:*
- cpe:2.3:a:kde:koffice:1.3_beta1:*:*:*:*:*:*:*
- cpe:2.3:a:kde:koffice:1.3_beta2:*:*:*:*:*:*:*
- cpe:2.3:a:kde:koffice:1.3_beta3:*:*:*:*:*:*:*
- cpe:2.3:a:kde:koffice:1.4:*:*:*:*:*:*:*
- cpe:2.3:a:kde:koffice:1.4.1:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
18- secunia.com/advisories/17145/nvdPatchVendor Advisory
- www.gentoo.org/security/en/glsa/glsa-200510-12.xmlnvdPatchVendor Advisory
- www.kde.org/info/security/advisory-20051011-1.txtnvdPatchVendor Advisory
- www.securityfocus.com/bid/15060nvdPatch
- scary.beasts.org/security/CESA-2005-005.txtnvdExploitVendor Advisory
- secunia.com/advisories/17171nvd
- secunia.com/advisories/17190nvd
- secunia.com/advisories/17212nvd
- secunia.com/advisories/17332nvd
- secunia.com/advisories/17480nvd
- secunia.com/advisories/17486nvd
- securitytracker.com/idnvd
- slackware.com/security/viewer.phpnvd
- www.debian.org/security/2005/dsa-872nvd
- www.novell.com/linux/security/advisories/2005_25_sr.htmlnvd
- www.redhat.com/archives/fedora-announce-list/2005-October/msg00042.htmlnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/22562nvd
- usn.ubuntu.com/202-1/nvd
News mentions
0No linked articles in our index yet.