Heap-Based Buffer Overflows in OpenOffice.org and LibreOffice Products
CVE-2012-2665

Currently unrated

Key Information:

Vendor: Apache
Status: Openoffice; Libreoffice
Vendor: CVE Published:; 6 August 2012

Summary

Multiple heap-based buffer overflow vulnerabilities exist in the XML manifest encryption tag parsing functionality of OpenOffice.org and LibreOffice prior to version 3.5.5. These vulnerabilities can be exploited by sending specially crafted Open Document Text (.odt) files that contain incorrect child tags within a parent tag, duplicate tags, or a Base64 ChecksumAttribute with an invalid length, leading to denial of service and potentially allowing remote attackers to execute arbitrary code.

References

http://secunia.com/advisories/60799

third-party-advisoryx_refsource_SECUNIA

http://www.gentoo.org/security/en/glsa/glsa-201408-19.xml

vendor-advisoryx_refsource_GENTOO

http://security.gentoo.org/glsa/glsa-201209-05.xml

vendor-advisoryx_refsource_GENTOO

EPSS Score

7% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Aug 6, 2012
Vulnerability Reserved
May 14, 2012