CVE-2012-4233

Published: Nov 19, 2012Modified: Apr 29, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:P

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

LibreOffice 3.5.x before 3.5.7.2 and 3.6.x before 3.6.1, and OpenOffice.org (OOo), allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted (1) odt file to vcllo.dll, (2) ODG (Drawing document) file to svxcorelo.dll, (3) PolyPolygon record in a .wmf (Window Meta File) file embedded in a ppt (PowerPoint) file to tllo.dll, or (4) xls (Excel) file to scfiltlo.dll.

Affected (27)

Products: Libreoffice: Libreoffice · Sun: Openoffice.org

1 product

1 product

Configuration A

27 vulnerable

Vulnerable Software	Affected Versions
Libreoffice Libreoffice	Up to 3.6
Libreoffice Libreoffice	Version 3.5.0
Libreoffice Libreoffice	Version 3.5.0 rc1
Libreoffice Libreoffice	Version 3.5.0 rc2
Libreoffice Libreoffice	Version 3.5.0 rc3
Libreoffice Libreoffice	Version 3.5.1
Libreoffice Libreoffice	Version 3.5.1 rc1
Libreoffice Libreoffice	Version 3.5.1 rc2
Libreoffice Libreoffice	Version 3.5.2
Libreoffice Libreoffice	Version 3.5.2 rc1
Libreoffice Libreoffice	Version 3.5.2 rc2
Libreoffice Libreoffice	Version 3.5.3
Libreoffice Libreoffice	Version 3.5.3 rc1
Libreoffice Libreoffice	Version 3.5.3 rc2
Libreoffice Libreoffice	Version 3.5.4
Libreoffice Libreoffice	Version 3.5.4 rc2
Libreoffice Libreoffice	Version 3.5.5.1
Libreoffice Libreoffice	Version 3.5.5.2
Libreoffice Libreoffice	Version 3.5.5.3
Libreoffice Libreoffice	Version 3.5.5
Libreoffice Libreoffice	Version 3.5.6.1
Libreoffice Libreoffice	Version 3.5.6.2
Libreoffice Libreoffice	Version 3.5.6.3
Libreoffice Libreoffice	Version 3.5.6
Libreoffice Libreoffice	Version 3.5. rc1
Libreoffice Libreoffice	Version 3.5
Sun Openoffice.org	All versions

References (30)

http://cgit.freedesktop.org/libreoffice/binfilter/commit/?h=libreoffice-3-5-7&id=7e22ee55ffc9743692f3ddb93e59dd4427029c5b

Source: cve@mitre.org

http://cgit.freedesktop.org/libreoffice/core/commit/?h=libreoffice-3-5-7&id=44bc6b5cac723b52df40fbef026e99b7119d8a69

Source: cve@mitre.org

http://cgit.freedesktop.org/libreoffice/core/commit/?h=libreoffice-3-5-7&id=6789ec4c1a9c6af84bd62e650a03226a46365d97

Source: cve@mitre.org

http://cgit.freedesktop.org/libreoffice/core/commit/?h=libreoffice-3-5-7&id=8ca9fb05c9967f11670d045886438ddfa3ac02a7

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-updates/2012-11/msg00039.html

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-updates/2012-12/msg00075.html

Source: cve@mitre.org

http://www.debian.org/security/2012/dsa-2570

Source: cve@mitre.org

http://www.libreoffice.org/advisories/cve-2012-4233/

Source: cve@mitre.org

http://www.openwall.com/lists/oss-security/2012/11/02/2

Source: cve@mitre.org

http://www.securityfocus.com/bid/56352

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/79728

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/79730

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/79731

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/79732

Source: cve@mitre.org

https://www.htbridge.com/advisory/HTB23106

Source: cve@mitre.org

http://cgit.freedesktop.org/libreoffice/binfilter/commit/?h=libreoffice-3-5-7&id=7e22ee55ffc9743692f3ddb93e59dd4427029c5b

Source: af854a3a-2127-422b-91ae-364da2661108

http://cgit.freedesktop.org/libreoffice/core/commit/?h=libreoffice-3-5-7&id=44bc6b5cac723b52df40fbef026e99b7119d8a69

Source: af854a3a-2127-422b-91ae-364da2661108

http://cgit.freedesktop.org/libreoffice/core/commit/?h=libreoffice-3-5-7&id=6789ec4c1a9c6af84bd62e650a03226a46365d97

Source: af854a3a-2127-422b-91ae-364da2661108

http://cgit.freedesktop.org/libreoffice/core/commit/?h=libreoffice-3-5-7&id=8ca9fb05c9967f11670d045886438ddfa3ac02a7

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-updates/2012-11/msg00039.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-updates/2012-12/msg00075.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2012/dsa-2570

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.libreoffice.org/advisories/cve-2012-4233/

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.openwall.com/lists/oss-security/2012/11/02/2

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/56352

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/79728

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/79730

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/79731

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/79732

Source: af854a3a-2127-422b-91ae-364da2661108

https://www.htbridge.com/advisory/HTB23106

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.