Mandrake Linux Security Advisory : wv2 (MDKSA-2006:109)

Medium Nessus Plugin ID 21753


The remote Mandrake Linux host is missing one or more security updates.


A boundary checking error was discovered in the wv2 library, used for accessing Microsoft Word documents. This error can lead to an integer overflow induced by processing certain Word files.

The updated packages have been patched to correct these issues.


Update the affected packages.

Plugin Details

Severity: Medium

ID: 21753

File Name: mandrake_MDKSA-2006-109.nasl

Version: $Revision: 1.14 $

Type: local

Published: 2006/06/24

Modified: 2015/03/19

Dependencies: 12634

Risk Information

Risk Factor: Medium


Base Score: 6.5

Temporal Score: 5.7

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C

Vulnerability Information

CPE: p-cpe:/a:mandriva:linux:lib64wv2_1, p-cpe:/a:mandriva:linux:lib64wv2_1-devel, p-cpe:/a:mandriva:linux:libwv2_1, p-cpe:/a:mandriva:linux:libwv2_1-devel, cpe:/o:mandriva:linux:2006

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/Mandrake/release, Host/Mandrake/rpm-list

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2006/06/20

Reference Information

CVE: CVE-2006-2197

BID: 18437

MDKSA: 2006:109