CVE-2012-4233

EPSS 2.5%

openoffice.org - remote

Published: 11/19/2012Modified: 4/28/2026

Description

LibreOffice 3.5.x before 3.5.7.2 and 3.6.x before 3.6.1, and OpenOffice.org (OOo), allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted (1) odt file to vcllo.dll, (2) ODG (Drawing document) file to svxcorelo.dll, (3) PolyPolygon record in a .wmf (Window Meta File) file embedded in a ppt (PowerPoint) file to tllo.dll, or (4) xls (Excel) file to scfiltlo.dll.

Affected packages (2)

Debian/libreofficefrom 0, < 1:3.5.4+dfsg-3
Debian/openoffice.orgfrom 0, < 1:3.2.1-11+squeeze8

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2012-4233