CVE-2012-1149 in OpenOfficeinformation

Résumé (Anglaise)

Integer overflow in the vclmi.dll module in OpenOffice.org (OOo) 3.3, 3.4 Beta, and possibly earlier, and LibreOffice before 3.5.3, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted embedded image object, as demonstrated by a JPEG image in a .DOC file, which triggers a heap-based buffer overflow.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Réserver

14/02/2012

Divulgation

21/06/2012

Statut

Confirmé

Entrées

VulDB provides additional information and datapoints for this CVE:

ID	Vulnérabilité	CWE	Exp	Con	CVE
5435	Apache OpenOffice vclmi.dll Exécution de code à distance	189	Preuve de concept	Correctif officiel	CVE-2012-1149

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PrécédentAperçuSuivant ▸

Interested in the pricing of exploits?

See the underground prices here!