CVE-2014-3524: libreoffice/openoffice.org: CSV command injection and DDE formulas

Severity: Critical

CVSS Score: 9.3

Apache OpenOffice before 4.1.1 allows remote attackers to execute arbitrary commands and possibly have other unspecified impact via a crafted Calc spreadsheet.