CVE-2012-3455Improper Restriction of Operations within the Bounds of a Memory Buffer in Koffice

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer7 documents5 sources
Severity
7.5HIGHNVD
EPSS
6.6%
top 8.80%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
KDE Koffice
Timeline
PublishedAug 20
Latest updateMay 17

Description

Heap-based buffer overflow in the read function in filters/words/msword-odf/wv2/src/styles.cpp in the Microsoft import filter in KOffice 2.3.3 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted ODF style in an ODF document. NOTE: this is the same vulnerability as CVE-2012-3456, but it was SPLIT by the CNA even though Calligra and KOffice share the same codebase.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDkde/koffice2.3.3+12

🔴Vulnerability Details

2
GHSA
GHSA-23cj-9wgg-g8w7: Heap-based buffer overflow in the read function in filters/words/msword-odf/wv2/src/styles2022-05-17
CVEList
CVE-2012-3455: Heap-based buffer overflow in the read function in filters/words/msword-odf/wv2/src/styles2012-08-20

📋Vendor Advisories

1
Ubuntu
KOffice vulnerability2012-08-09

💬Community

3
Bugzilla
CVE-2012-3455 Koffice: DOC file rendering buffer overflow2012-08-06
Bugzilla
CVE-2012-3455 Koffice: DOC file rendering buffer overflow [epel-5]2012-08-06
Bugzilla
CVE-2012-3455 Koffice: DOC file rendering buffer overflow [fedora-all]2012-08-06
CVE-2012-3455 — KDE Koffice vulnerability | cvebase