VYPR
Unrated severityNVD Advisory· Published Aug 20, 2012· Updated Jun 16, 2026

CVE-2012-3455

CVE-2012-3455

Description

Heap-based buffer overflow in the read function in filters/words/msword-odf/wv2/src/styles.cpp in the Microsoft import filter in KOffice 2.3.3 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted ODF style in an ODF document. NOTE: this is the same vulnerability as CVE-2012-3456, but it was SPLIT by the CNA even though Calligra and KOffice share the same codebase.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

17
  • KDE/Koffice17 versions
    cpe:2.3:a:kde:koffice:*:*:*:*:*:*:*:*+ 16 more
    • cpe:2.3:a:kde:koffice:*:*:*:*:*:*:*:*range: <=2.3.3
    • cpe:2.3:a:kde:koffice:1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:koffice:1.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:koffice:1.3:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:koffice:1.3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:koffice:1.3.2:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:koffice:1.3.3:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:koffice:1.3.4:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:koffice:1.3.5:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:koffice:1.3:beta1:*:*:*:*:*:*
    • cpe:2.3:a:kde:koffice:1.3:beta2:*:*:*:*:*:*
    • cpe:2.3:a:kde:koffice:1.3:beta3:*:*:*:*:*:*
    • cpe:2.3:a:kde:koffice:1.4:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:koffice:1.4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:koffice:1.4.2:*:*:*:*:*:*:*
    • cpe:2.3:a:kde:koffice:1.6.1:*:*:*:*:*:*:*
    • (no CPE)range: <=2.3.3

Patches

Vulnerability mechanics

References

12

News mentions

0

No linked articles in our index yet.