CVE-2012-1149

NONECVSS 0.0

0.0

Integer overflow in the vclmi.dll module in OpenOffice.org (OOo) 3.3, 3.4 Beta, and possibly earlier, and LibreOffice before 3.5.3, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted embedded image object, as demonstrated by a JPEG image in a .DOC file, which triggers a heap-based buffer overflow.

🔗 References (46)

secalert@redhathttp://archives.neohapsis.com/archives/bugtraq/2012-05/0089.html
secalert@redhathttp://lists.fedoraproject.org/pipermail/package-announce/2012-June/082168.html
secalert@redhathttp://lists.fedoraproject.org/pipermail/package-announce/2012-May/081319.html
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2012-0705.html
secalert@redhathttp://secunia.com/advisories/46992
secalert@redhathttp://secunia.com/advisories/47244
secalert@redhathttp://secunia.com/advisories/49140
secalert@redhathttp://secunia.com/advisories/49373
secalert@redhathttp://secunia.com/advisories/49392
secalert@redhathttp://secunia.com/advisories/50692
secalert@redhathttp://secunia.com/advisories/60799
secalert@redhathttp://security.gentoo.org/glsa/glsa-201209-05.xml
secalert@redhathttp://securitytracker.com/id?1027068
secalert@redhathttp://www.debian.org/security/2012/dsa-2473
secalert@redhathttp://www.debian.org/security/2012/dsa-2487

Is Your Infrastructure Affected by CVE-2012-1149?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2012-1149

📅 Published

🔄 Last Modified

🔗 References (46)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2012-1149?