Abisource : Security Vulnerabilities, CVEs, CVSS score >= 8
af/util/xp/ut_go_file.cpp in AbiWord 3.0.2-2 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL.
Max CVSS
8.8
EPSS Score
0.20%
Published
2017-12-14
Updated
2017-12-29
Buffer overflow in the wvHandleDateTimePicture function in wv library (wvWare) 0.7.4 through 0.7.6 and 1.0.0 allows remote attackers to execute arbitrary code via a document with a long DateTime field.
Max CVSS
10.0
EPSS Score
9.66%
Published
2004-08-06
Updated
2017-07-11
2 vulnerabilities found