CVE-2012-2665

Name: CVE-2012-2665
Creator: NVD / NIST
Published: 2012-08-06T18:55:01.133+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 7.01%

Last modified Jun 16, 2026

CVE-2012-2665 is a vulnerability of currently unknown severity. Multiple heap-based buffer overflows in the XML manifest encryption tag parsing functionality in OpenOffice.org and LibreOffice before 3.5.5 allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted Open Document Text (.odt) file with (1) a child tag within an incorrect parent tag, (2) duplicate tags, or (3) a Base64 ChecksumAttribute whose length is not evenly divisible by four.. EPSS estimates a 7.01% chance of exploitation in the next 30 days.

Description

Multiple heap-based buffer overflows in the XML manifest encryption tag parsing functionality in OpenOffice.org and LibreOffice before 3.5.5 allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted Open Document Text (.odt) file with (1) a child tag within an incorrect parent tag, (2) duplicate tags, or (3) a Base64 ChecksumAttribute whose length is not evenly divisible by four.

Metrics

EPSS Probability

7.01%

93.3th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-787

Affected Software

Vendor	Product	Versions
Apache	Openoffice	< 3.4.1
Libreoffice	Libreoffice	< 3.5.5
Canonical	Ubuntu Linux	10.04
Canonical	Ubuntu Linux	11.04
Canonical	Ubuntu Linux	11.10
Canonical	Ubuntu Linux	12.04
Debian	Debian Linux	6.0
Debian	Debian Linux	7.0
Redhat	Enterprise Linux	6.0
Redhat	Enterprise Linux Desktop	6.0
Redhat	Enterprise Linux For Ibm Z Systems	6.0
Redhat	Enterprise Linux For Power Big Endian	6.0
Redhat	Enterprise Linux Server	6.0
Redhat	Enterprise Linux Server From Rhui 6	6.0
Redhat	Enterprise Linux Workstation	6.0

References

http://rhn.redhat.com/errata/RHSA-2012-1135.htmlThird Party Advisory
http://secunia.com/advisories/50142Broken Link
http://secunia.com/advisories/50146Broken Link
http://secunia.com/advisories/50692Broken Link
http://secunia.com/advisories/60799Broken Link
http://security.gentoo.org/glsa/glsa-201209-05.xmlThird Party Advisory
http://www.debian.org/security/2012/dsa-2520Third Party Advisory
http://www.gentoo.org/security/en/glsa/glsa-201408-19.xmlThird Party Advisory
http://www.libreoffice.org/about-us/security/advisories/cve-2012-2665/Vendor Advisory
http://www.pre-cert.de/advisories/PRE-SA-2012-05.txtThird Party Advisory
http://www.securityfocus.com/bid/54769Broken Link, Third Party Advisory, VDB Entry
http://www.securitytracker.com/id?1027331Broken Link, Third Party Advisory, VDB Entry
http://www.securitytracker.com/id?1027332Broken Link, Third Party Advisory, VDB Entry
http://www.ubuntu.com/usn/USN-1536-1Third Party Advisory
http://www.ubuntu.com/usn/USN-1537-1Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=826077Issue Tracking, Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2012-1135.htmlThird Party Advisory
http://secunia.com/advisories/50142Broken Link
http://secunia.com/advisories/50146Broken Link
http://secunia.com/advisories/50692Broken Link
http://secunia.com/advisories/60799Broken Link
http://security.gentoo.org/glsa/glsa-201209-05.xmlThird Party Advisory
http://www.debian.org/security/2012/dsa-2520Third Party Advisory
http://www.gentoo.org/security/en/glsa/glsa-201408-19.xmlThird Party Advisory
http://www.libreoffice.org/about-us/security/advisories/cve-2012-2665/Vendor Advisory
http://www.pre-cert.de/advisories/PRE-SA-2012-05.txtThird Party Advisory
http://www.securityfocus.com/bid/54769Broken Link, Third Party Advisory, VDB Entry
http://www.securitytracker.com/id?1027331Broken Link, Third Party Advisory, VDB Entry
http://www.securitytracker.com/id?1027332Broken Link, Third Party Advisory, VDB Entry
http://www.ubuntu.com/usn/USN-1536-1Third Party Advisory
http://www.ubuntu.com/usn/USN-1537-1Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=826077Issue Tracking, Third Party Advisory

Timeline

Published: Aug 6, 2012
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2012-2665?

How severe is CVE-2012-2665?

Severity scoring for CVE-2012-2665 is pending analysis. The EPSS model estimates a 7.01% probability of exploitation in the next 30 days.

How do I fix CVE-2012-2665?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2012-2665?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST