CVE-2011-2685

LibreOffice < 3.3.3 - Stack-based Buffer Overflow in Lotus Word Pro Import Filter

Title source: llm
STIX 2.1

Description

Stack-based buffer overflow in the Lotus Word Pro import filter in LibreOffice before 3.3.3 allows remote attackers to execute arbitrary code via a crafted .lwp file.

References (7)

Core 7
Core References
Mailing List vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-updates/2011-10/msg00019.html
Mailing List mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2011/07/12/13
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2011:172
Patch, US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/953183
Mailing List mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2011/07/06/13

Scores

EPSS 0.0704
EPSS Percentile 93.4%

Details

CWE
CWE-119
Status published
Products (3)
libreoffice/libreoffice 3.3.0
libreoffice/libreoffice 3.3.1
libreoffice/libreoffice < 3.3.2
Published Jul 21, 2011
Tracked Since Feb 18, 2026