Integer Overflow Vulnerability in OpenOffice.org and LibreOffice Leading to Denial of Service
CVE-2012-2334

Currently unrated

Key Information:

Vendor

Apache
Status
Openoffice.org
Vendor
CVE Published:
19 June 2012

What is CVE-2012-2334?

An integer overflow vulnerability exists in OpenOffice.org (OOo) and potentially earlier versions of LibreOffice. This flaw allows remote attackers to exploit a crafted PowerPoint (.ppt) document containing an Escher graphics record's length, resulting in a buffer overflow. Successful exploitation can lead to denial of service through application crashes and may enable unauthorized execution of arbitrary code.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://secunia.com/advisories/60799
third-party-advisoryx_refsource_SECUNIA
https://bugzilla.redhat.com/show_bug.cgi?id=821803
x_refsource_MISC
http://www.gentoo.org/security/en/glsa/glsa-201408-19.xml
vendor-advisoryx_refsource_GENTOO

EPSS Score

8% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.