VIR Vulnerability Intelligence Relay

CVE-2012-2334

medium
Published 2012-06-19 · Modified 2026-04-29
CVSS v3
CVSS v2
6.8
VIR risk
6.8

Description

Integer overflow in filter/source/msfilter/msdffimp.cxx in OpenOffice.org (OOo) 3.3, 3.4 Beta, and possibly earlier, and LibreOffice before 3.5.3, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the length of an Escher graphics record in a PowerPoint (.ppt) document, which triggers a buffer overflow.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2012-2334

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://www.openoffice.org/security/cves/CVE-2012-2334.html

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://www.libreoffice.org/advisories/cve-2012-2334/

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://secunia.com/advisories/49392

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://secunia.com/advisories/49373

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://secunia.com/advisories/47244

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://secunia.com/advisories/46992

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://cgit.freedesktop.org/libreoffice/core/commit/?id=512401decb286ba0fc3031939b8f7de8649c502e

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://cgit.freedesktop.org/libreoffice/core/commit/?id=28a6558f9d3ca2dda3191f8b5b3f2378ee2533da

OS impact
OSVersionStatusFixed in
debian debianbookwormfixed1:3.5.2~rc2-1
debian debianbullseyefixed1:3.5.2~rc2-1
debian debianforkyfixed1:3.5.2~rc2-1
debian debiansidfixed1:3.5.2~rc2-1
debian debiantrixiefixed1:3.5.2~rc2-1

Application impact
VendorProductVersionsFixed
apache apacheopenoffice.org3.3
apache apacheopenoffice.org3.4
libreofficelibreoffice{"endIncluding":"3.5.2"}
libreofficelibreoffice3.3.0
libreofficelibreoffice3.3.1
libreofficelibreoffice3.3.2
libreofficelibreoffice3.3.3
libreofficelibreoffice3.3.4
libreofficelibreoffice3.4.0
libreofficelibreoffice3.4.1
libreofficelibreoffice3.4.2
libreofficelibreoffice3.4.5
libreofficelibreoffice3.5

References

CWEs

CWE-189

Verify integrity in audit chain (admin only). AS-IS.