CVE-2012-2149 – libwpd: Memory overwrite flaw by processing certain WordPerfect (WPD) documents

https://notcve.org/view.php?id=CVE-2012-2149

21 Jun 2012 — The WPXContentListener::_closeTableRow function in WPXContentListener.cpp in libwpd 0.8.8, as used by OpenOffice.org (OOo) before 3.4, allows remote attackers to execute arbitrary code via a crafted Wordperfect .WPD document that causes a negative array index to be used. NOTE: some sources report this issue as an integer overflow. La función WPXContentListener::_closeTableRow en WPXContentListener.cpp en libwpd v0.8.8, tal y como es usado por OpenOffice.org (OOo) antes de v3.4, permite a atacantes remotos e... • http://archives.neohapsis.com/archives/bugtraq/2012-05/0090.html • CWE-189: Numeric Errors •