CVE-2012-1149

CWE-189CWE-190Integer OverflowCWE-122Heap-based Buffer Overflow10 documents8 sources
Severity
7.5HIGH
EPSS
1.2%
top 21.15%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
10
Libreoffice LibreofficeApache Openoffice.orgDebian Debian Linux+7 more
Timeline
PublishedJun 21
Latest updateMay 17

Description

Integer overflow in the vclmi.dll module in OpenOffice.org (OOo) 3.3, 3.4 Beta, and possibly earlier, and LibreOffice before 3.5.3, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted embedded image object, as demonstrated by a JPEG image in a .DOC file, which triggers a heap-based buffer overflow.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages6 packages

Debianlibreoffice< 1:3.4.5-1+3
NVDapache/openoffice.org3.3.0, 3.4+1

Also affects: Debian Linux 6.0, 7.0, Fedora 15, 16, Enterprise Linux 5.0, 6.2, 6.2.z

Patches

Patch: securitytracker.comPatch: securitytracker.com

🔴Vulnerability Details

3
GHSA
GHSA-xqxg-hxfm-4q7f: Integer overflow in the vclmi2022-05-17
CVEList
CVE-2012-1149: Integer overflow in the vclmi2012-06-21
OSV
CVE-2012-1149: Integer overflow in the vclmi2012-06-21

📋Vendor Advisories

4
Ubuntu
OpenOffice.org vulnerabilities2012-07-02
Ubuntu
LibreOffice vulnerabilities2012-07-02
Red Hat
libreoffice: Integer overflows, leading to heap-buffer overflows in JPEG, PNG and BMP reader implementations2012-05-16
Debian
CVE-2012-1149: libreoffice - Integer overflow in the vclmi.dll module in OpenOffice.org (OOo) 3.3, 3.4 Beta, ...2012

💬Community

2
Bugzilla
CVE-2012-1149 openoffice.org, libreoffice: Integer overflows, leading to heap-buffer overflows in JPEG, PNG and BMP reader implementations [fedora-all]2012-05-16
Bugzilla
CVE-2012-1149 openoffice.org, libreoffice: Integer overflows, leading to heap-buffer overflows in JPEG, PNG and BMP reader implementations2012-05-15
CVE-2012-1149 (HIGH CVSS 7.5) | Integer overflow in the vclmi.dll m | cvebase.io