CVE-2012-2665 — HIGH (7.5) — White Hats Nepal

Q: How severe is CVE-2012-2665?

CVE-2012-2665 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2012-2665?

Check the references section above for vendor advisories and patch information. Affected products include: Apache Openoffice, Libreoffice Libreoffice, Canonical Ubuntu Linux, Debian Debian Linux, Redhat Enterprise Linux.

Vulnerability Description

Multiple heap-based buffer overflows in the XML manifest encryption tag parsing functionality in OpenOffice.org and LibreOffice before 3.5.5 allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted Open Document Text (.odt) file with (1) a child tag within an incorrect parent tag, (2) duplicate tags, or (3) a Base64 ChecksumAttribute whose length is not evenly divisible by four.

CVSS Score

7.5

HIGH

AV:N/AC:L/Au:N/C:P/I:P/A:P

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Apache	Openoffice	< 3.4.1
Libreoffice	Libreoffice	< 3.5.5
Canonical	Ubuntu Linux	10.04
Debian	Debian Linux	6.0
Redhat	Enterprise Linux	6.0
Redhat	Enterprise Linux Desktop	6.0
Redhat	Enterprise Linux For Ibm Z Systems	6.0
Redhat	Enterprise Linux For Power Big Endian	6.0
Redhat	Enterprise Linux Server	6.0
Redhat	Enterprise Linux Server From Rhui 6	6.0
Redhat	Enterprise Linux Workstation	6.0

Related Weaknesses (CWE)

CWE-787

References

http://rhn.redhat.com/errata/RHSA-2012-1135.htmlThird Party Advisory
http://secunia.com/advisories/50142Broken Link
http://secunia.com/advisories/50146Broken Link
http://secunia.com/advisories/50692Broken Link
http://secunia.com/advisories/60799Broken Link
http://security.gentoo.org/glsa/glsa-201209-05.xmlThird Party Advisory
http://www.debian.org/security/2012/dsa-2520Third Party Advisory
http://www.gentoo.org/security/en/glsa/glsa-201408-19.xmlThird Party Advisory
http://www.libreoffice.org/about-us/security/advisories/cve-2012-2665/Vendor Advisory
http://www.pre-cert.de/advisories/PRE-SA-2012-05.txtThird Party Advisory
http://www.securityfocus.com/bid/54769Broken LinkThird Party AdvisoryVDB Entry
http://www.securitytracker.com/id?1027331Broken LinkThird Party AdvisoryVDB Entry
http://www.securitytracker.com/id?1027332Broken LinkThird Party AdvisoryVDB Entry
http://www.ubuntu.com/usn/USN-1536-1Third Party Advisory
http://www.ubuntu.com/usn/USN-1537-1Third Party Advisory

FAQ

What is CVE-2012-2665?

CVE-2012-2665 is a vulnerability with a CVSS score of 7.5 (HIGH). Multiple heap-based buffer overflows in the XML manifest encryption tag parsing functionality in OpenOffice.org and LibreOffice before 3.5.5 allow remote attackers to cause a denial of service and pos...

How severe is CVE-2012-2665?

CVE-2012-2665 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2012-2665?

Check the references section above for vendor advisories and patch information. Affected products include: Apache Openoffice, Libreoffice Libreoffice, Canonical Ubuntu Linux, Debian Debian Linux, Redhat Enterprise Linux.