CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-3455

Heap-based buffer overflow in the read function in filters/words/msword-odf/wv2/src/styles.cpp in the Microsoft import filter in KOffice 2.3.3 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted ODF style in an ODF document. NOTE: this is the same vulnerability as CVE-2012-3456, but it was SPLIT by the CNA even though Calligra and KOffice share the same codebase.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.066

EPSS Ranking 90.6%

CVSS Severity

CVSS v2 Score 7.5

References

Products affected by CVE-2012-3455

Kde » Koffice » Version: 1.2

cpe:2.3:a:kde:koffice:1.2
Kde » Koffice » Version: 1.2.1

cpe:2.3:a:kde:koffice:1.2.1
Kde » Koffice » Version: 1.3

cpe:2.3:a:kde:koffice:1.3
Kde » Koffice » Version: 1.3.1

cpe:2.3:a:kde:koffice:1.3.1
Kde » Koffice » Version: 1.3.2

cpe:2.3:a:kde:koffice:1.3.2
Kde » Koffice » Version: 1.3.3

cpe:2.3:a:kde:koffice:1.3.3
Kde » Koffice » Version: 1.3.4

cpe:2.3:a:kde:koffice:1.3.4
Kde » Koffice » Version: 1.3.5

cpe:2.3:a:kde:koffice:1.3.5
Kde » Koffice » Version: 1.4

cpe:2.3:a:kde:koffice:1.4
Kde » Koffice » Version: 1.4.1

cpe:2.3:a:kde:koffice:1.4.1
Kde » Koffice » Version: 1.4.2

cpe:2.3:a:kde:koffice:1.4.2
Kde » Koffice » Version: 1.6.1

cpe:2.3:a:kde:koffice:1.6.1
Kde » Koffice » Version: 2.2.0

cpe:2.3:a:kde:koffice:2.2.0
Kde » Koffice » Version: 2.2.1

cpe:2.3:a:kde:koffice:2.2.1
Kde » Koffice » Version: 2.2.2

cpe:2.3:a:kde:koffice:2.2.2
Kde » Koffice » Version: 2.3

cpe:2.3:a:kde:koffice:2.3
Kde » Koffice » Version: 2.3.0

cpe:2.3:a:kde:koffice:2.3.0
Kde » Koffice » Version: 2.3.1

cpe:2.3:a:kde:koffice:2.3.1
Kde » Koffice » Version: 2.3.3

cpe:2.3:a:kde:koffice:2.3.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-3455

Products

Pricing

Contact Us