CVE-2012-3456

Calligra < 2.4.3 - Heap-Based Buffer Overflow in Microsoft Import Filter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2012-3456. PoCs published by Charlie Miller.

AI-analyzed exploit summary The code snippet describes a buffer overflow vulnerability in Calligra/KOffice due to improper handling of UPX data in the STD::read function. The vulnerability allows arbitrary code execution or DoS via crafted input.

Description

Heap-based buffer overflow in the read function in filters/words/msword-odf/wv2/src/styles.cpp in the Microsoft import filter in Calligra 2.4.3 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted ODF style in an ODF document. NOTE: this is the same vulnerability as CVE-2012-3455, but it was SPLIT by the CNA even though Calligra and KOffice share the same codebase.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Charlie Miller · c++remotelinux

https://www.exploit-db.com/exploits/37576

View Code ZIP pw:eip

The code snippet describes a buffer overflow vulnerability in Calligra/KOffice due to improper handling of UPX data in the STD::read function. The vulnerability allows arbitrary code execution or DoS via crafted input.

Classification

Writeup 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Theoretical

Target: Calligra 2.4.3, KOffice 2.3.3

No auth needed

Prerequisites: Crafted input file to trigger buffer overflow

MITRE ATT&CK