Back to search
CVE-2012-3456
Published: Aug 20, 2012
Modified: Aug 6, 2024
PUBLISHED
Description
Heap-based buffer overflow in the read function in filters/words/msword-odf/wv2/src/styles.cpp in the Microsoft import filter in Calligra 2.4.3 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted ODF style in an ODF document. NOTE: this is the same vulnerability as CVE-2012-3455, but it was SPLIT by the CNA even though Calligra and KOffice share the same codebase.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
calligra-styles-bo(77482)
vdb-entry
x_refsource_XF
[oss-security] 20120810 Re: CVE request for Calligra
mailing-list
x_refsource_MLIST
[oss-security] 20120806 Re: CVE request for Calligra
mailing-list
x_refsource_MLIST
openSUSE-SU-2012:1061
vendor-advisory
x_refsource_SUSE
[oss-security] 20120805 Re: CVE request for Calligra
mailing-list
x_refsource_MLIST
[oss-security] 20120804 Re: CVE request for Calligra
mailing-list
x_refsource_MLIST
SSRT101182
vendor-advisory
x_refsource_HP
[oss-security] 20120804 CVE request for Calligra
mailing-list
x_refsource_MLIST
USN-1525-1
vendor-advisory
x_refsource_UBUNTU
http://www.kde.org/info/security/advisory-20120810-1.txt
x_refsource_CONFIRM
50050
third-party-advisory
x_refsource_SECUNIA
HPSBMU02873
vendor-advisory
x_refsource_HP
54816
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now