CVE-2012-2334

Currently unrated

Key Information:

Vendor: Apache
Status: Openoffice.org
Vendor: CVE Published:; 19 June 2012

Summary

Integer overflow in filter/source/msfilter/msdffimp.cxx in OpenOffice.org (OOo) 3.3, 3.4 Beta, and possibly earlier, and LibreOffice before 3.5.3, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the length of an Escher graphics record in a PowerPoint (.ppt) document, which triggers a buffer overflow.

References

http://secunia.com/advisories/60799

third-party-advisoryx_refsource_SECUNIA

https://bugzilla.redhat.com/show_bug.cgi?id=821803

x_refsource_MISC

http://www.gentoo.org/security/en/glsa/glsa-201408-19.xml

vendor-advisoryx_refsource_GENTOO

Timeline

Vulnerability published
Jun 19, 2012
Vulnerability Reserved
Apr 19, 2012