cbcvebase.
CVE-2012-2334
published 2012-06-19

CVE-2012-2334: Integer overflow in filter/source/msfilter/msdffimp.cxx in OpenOffice.org (OOo) 3.3, 3.4 Beta, and possibly earlier, and LibreOffice before 3.5.3, allows…

PriorityP339medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EPSS
13.04%
95.9th percentile
Integer overflow in filter/source/msfilter/msdffimp.cxx in OpenOffice.org (OOo) 3.3, 3.4 Beta, and possibly earlier, and LibreOffice before 3.5.3, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the length of an Escher graphics record in a PowerPoint (.ppt) document, which triggers a buffer overflow.

Affected

18 ranges
VendorProductVersion rangeFixed in
apacheopenoffice.org
apacheopenoffice.org
debianlibreoffice< libreoffice 1:3.5.2~rc2-1 (bookworm)libreoffice 1:3.5.2~rc2-1 (bookworm)
libreofficelibreoffice<= 3.5.2
libreofficelibreoffice
libreofficelibreoffice
libreofficelibreoffice
libreofficelibreoffice
libreofficelibreoffice
libreofficelibreoffice
libreofficelibreoffice
libreofficelibreoffice
libreofficelibreoffice
libreofficelibreoffice
libreofficelibreoffice>= 0 < 1:3.5.2~rc2-11:3.5.2~rc2-1
libreofficelibreoffice>= 0 < 1:3.5.2~rc2-11:3.5.2~rc2-1
libreofficelibreoffice>= 0 < 1:3.5.2~rc2-11:3.5.2~rc2-1
libreofficelibreoffice>= 0 < 1:3.5.2~rc2-11:3.5.2~rc2-1

CVSS provenance

nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv6.8MEDIUM
vendor_ubuntu9.3CRITICAL
vendor_debian6.8MEDIUM
vendor_redhat6.8MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.