Vulnerability Details : CVE-2012-1149
Integer overflow in the vclmi.dll module in OpenOffice.org (OOo) 3.3, 3.4 Beta, and possibly earlier, and LibreOffice before 3.5.3, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted embedded image object, as demonstrated by a JPEG image in a .DOC file, which triggers a heap-based buffer overflow.
Vulnerability category: OverflowExecute codeDenial of service
Products affected by CVE-2012-1149
- cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server_aus:6.2:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux_server_eus:6.2.z:*:*:*:*:*:*:*
- cpe:2.3:a:apache:openoffice.org:3.4:beta:*:*:*:*:*:*
- cpe:2.3:a:apache:openoffice.org:3.3.0:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:16:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:15:*:*:*:*:*:*:*
- cpe:2.3:a:libreoffice:libreoffice:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2012-1149
4.91%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 93 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2012-1149
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
CWE ids for CVE-2012-1149
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2012-1149
-
http://lists.fedoraproject.org/pipermail/package-announce/2012-May/081319.html
[SECURITY] Fedora 16 Update: libreoffice-3.4.5.2-15.fc16Third Party Advisory
-
http://www.securityfocus.com/bid/53570
OpenOffice Prior to 3.4 Multiple Memory Corruption VulnerabilitiesThird Party Advisory;VDB Entry
-
http://rhn.redhat.com/errata/RHSA-2012-0705.html
RHSA-2012:0705 - Security Advisory - Red Hat Customer PortalThird Party Advisory
-
http://www.debian.org/security/2012/dsa-2487
Debian -- Security Information -- DSA-2487-1 openoffice.orgThird Party Advisory
-
http://security.gentoo.org/glsa/glsa-201209-05.xml
LibreOffice: Multiple vulnerabilities (GLSA 201209-05) — Gentoo securityThird Party Advisory
-
http://lists.fedoraproject.org/pipermail/package-announce/2012-June/082168.html
[SECURITY] Fedora 15 Update: libreoffice-3.3.4.1-5.fc15Third Party Advisory
-
http://www.mandriva.com/security/advisories?name=MDVSA-2012:091
mandriva.comBroken Link
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/75692
OpenOffice.org vclmi.dll buffer overflow CVE-2012-1149 Vulnerability Report
-
http://securitytracker.com/id?1027068
OpenOffice.org Integer Overflow in 'vclmi.dll' Lets Remote Users Execute Arbitrary Code - SecurityTrackerPatch;Third Party Advisory;VDB Entry
-
http://www.mandriva.com/security/advisories?name=MDVSA-2012:090
mandriva.comBroken Link
-
http://archives.neohapsis.com/archives/bugtraq/2012-05/0089.html
Broken Link
-
http://www.debian.org/security/2012/dsa-2473
Debian -- Security Information -- DSA-2473-1 openoffice.orgThird Party Advisory
-
http://www.openoffice.org/security/cves/CVE-2012-1149.html
CVE-2012-1149Third Party Advisory
-
http://www.libreoffice.org/advisories/cve-2012-1149/
CVE-2012-1149 | LibreOffice - Free Office Suite - Fun Project - Fantastic PeopleVendor Advisory
-
http://www.gentoo.org/security/en/glsa/glsa-201408-19.xml
OpenOffice, LibreOffice: Multiple vulnerabilities (GLSA 201408-19) — Gentoo securityThird Party Advisory
Jump to