Back to search
CVE-2012-3455
Published: Aug 20, 2012
Modified: Aug 6, 2024
PUBLISHED
Description
Heap-based buffer overflow in the read function in filters/words/msword-odf/wv2/src/styles.cpp in the Microsoft import filter in KOffice 2.3.3 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted ODF style in an ODF document. NOTE: this is the same vulnerability as CVE-2012-3456, but it was SPLIT by the CNA even though Calligra and KOffice share the same codebase.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
50199
third-party-advisory
x_refsource_SECUNIA
[oss-security] 20120810 Re: CVE request for Calligra
mailing-list
x_refsource_MLIST
[oss-security] 20120806 Re: CVE request for Calligra
mailing-list
x_refsource_MLIST
[oss-security] 20120805 Re: CVE request for Calligra
mailing-list
x_refsource_MLIST
[oss-security] 20120804 Re: CVE request for Calligra
mailing-list
x_refsource_MLIST
koffice-kword-odf-bo(77483)
vdb-entry
x_refsource_XF
[oss-security] 20120804 CVE request for Calligra
mailing-list
x_refsource_MLIST
USN-1526-1
vendor-advisory
x_refsource_UBUNTU
http://www.kde.org/info/security/advisory-20120810-1.txt
x_refsource_CONFIRM
54816
vdb-entry
x_refsource_BID
openSUSE-SU-2012:1060
vendor-advisory
x_refsource_SUSE
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now