National Cyber Awareness System

Vulnerability Summary for CVE-2012-2334

Overview

Integer overflow in filter/source/msfilter/msdffimp.cxx in OpenOffice.org (OOo) 3.3, 3.4 Beta, and possibly earlier, and LibreOffice before 3.5.3, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the length of an Escher graphics record in a PowerPoint (.ppt) document, which triggers a buffer overflow.

Impact

CVSS Severity (version 2.0):

CVSS Version 2 Metrics:

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

External Source: CONFIRM

Name: http://cgit.freedesktop.org/libreoffice/core/commit/?id=512401decb286ba0fc3031939b8f7de8649c502e

Type: Patch Information; Exploit

Hyperlink:http://cgit.freedesktop.org/libreoffice/core/commit/?id=512401decb286ba0fc3031939b8f7de8649c502e

External Source: CONFIRM

Name: http://cgit.freedesktop.org/libreoffice/core/commit/?id=28a6558f9d3ca2dda3191f8b5b3f2378ee2533da

Type: Patch Information; Exploit

Hyperlink:http://cgit.freedesktop.org/libreoffice/core/commit/?id=28a6558f9d3ca2dda3191f8b5b3f2378ee2533da

External Source: MISC

Name: https://bugzilla.redhat.com/show_bug.cgi?id=821803

Hyperlink:https://bugzilla.redhat.com/show_bug.cgi?id=821803

External Source: XF

Name: openoffice-powerpoint-dos(75695)

Hyperlink:http://xforce.iss.net/xforce/xfdb/75695

External Source: BID

Name: 53570

Hyperlink:http://www.securityfocus.com/bid/53570

External Source: OSVDB

Name: 82517

Hyperlink:http://www.osvdb.org/82517

External Source: MLIST

Name: [oss-security] 20120528 Kind request to update upstream CVE-2012-2334 advisories they to reflect arbitrary code execution possibility too and OSS list notification

Hyperlink:http://www.openwall.com/lists/oss-security/2012/05/28/2

External Source: CONFIRM

Name: http://www.openoffice.org/security/cves/CVE-2012-2334.html

Type: Advisory

Hyperlink:http://www.openoffice.org/security/cves/CVE-2012-2334.html

External Source: MANDRIVA

Name: MDVSA-2012:091

Hyperlink:http://www.mandriva.com/security/advisories?name=MDVSA-2012:091

External Source: MANDRIVA

Name: MDVSA-2012:090

Hyperlink:http://www.mandriva.com/security/advisories?name=MDVSA-2012:090

External Source: CONFIRM

Name: http://www.libreoffice.org/advisories/cve-2012-2334/

Type: Advisory

Hyperlink:http://www.libreoffice.org/advisories/cve-2012-2334/

External Source: DEBIAN

Name: DSA-2487

Hyperlink:http://www.debian.org/security/2012/dsa-2487

External Source: SECTRACK

Name: 1027070

Hyperlink:http://securitytracker.com/id?1027070

External Source: SECUNIA

Name: 49392

Type: Advisory

Hyperlink:http://secunia.com/advisories/49392

External Source: SECUNIA

Name: 49373

Type: Advisory

Hyperlink:http://secunia.com/advisories/49373

External Source: SECUNIA

Name: 47244

Type: Advisory

Hyperlink:http://secunia.com/advisories/47244

External Source: SECUNIA

Name: 46992

Type: Advisory

Hyperlink:http://secunia.com/advisories/46992

External Source: REDHAT

Name: RHSA-2012:0705

Hyperlink:http://rhn.redhat.com/errata/RHSA-2012-0705.html

External Source: FEDORA

Name: FEDORA-2012-8114

Hyperlink:http://lists.fedoraproject.org/pipermail/package-announce/2012-June/082168.html

External Source: BUGTRAQ

Name: 20120516 CVE-2012-2334 Vulnerabilities related to malformed Powerpoint files in OpenOffice.org 3.3.0

Hyperlink:http://archives.neohapsis.com/archives/bugtraq/2012-05/0091.html