CVE-2012-2149

The WPXContentListener::_closeTableRow function in WPXContentListener.cpp in libwpd 0.8.8, as used by OpenOffice.org (OOo) before 3.4, allows remote attackers to execute arbitrary code via a crafted Wordperfect .WPD document that causes a negative array index to be used. NOTE: some sources report this issue as an integer overflow.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:redhat:enterprise_linux__optional_productivity_applications:*:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:apache:openoffice.org:*:beta_1:*:*:*:*:*:*
cpe:2.3:a:apache:openoffice.org:3.3:*:*:*:*:*:*:*
cpe:2.3:a:libwpd:libwpd:0.8.8:*:*:*:*:*:*:*

History

07 Nov 2023, 02:10

Type Values Removed Values Added
Summary The WPXContentListener::_closeTableRow function in WPXContentListener.cpp in libwpd 0.8.8, as used by OpenOffice.org (OOo) before 3.4, allows remote attackers to execute arbitrary code via a crafted Wordperfect .WPD document that causes a negative array index to be used. NOTE: some sources report this issue as an integer overflow. The WPXContentListener::_closeTableRow function in WPXContentListener.cpp in libwpd 0.8.8, as used by OpenOffice.org (OOo) before 3.4, allows remote attackers to execute arbitrary code via a crafted Wordperfect .WPD document that causes a negative array index to be used. NOTE: some sources report this issue as an integer overflow.

Information

Published : 2012-06-21 15:55

Updated : 2024-02-28 12:00


NVD link : CVE-2012-2149

Mitre link : CVE-2012-2149

CVE.ORG link : CVE-2012-2149


JSON object : View

Products Affected

apache

  • openoffice.org

redhat

  • enterprise_linux__optional_productivity_applications
  • enterprise_linux_desktop

libwpd

  • libwpd
CWE
CWE-189

Numeric Errors