CVE-2012-5656

Ubuntu Security Notice USN-1712-1

Severity Score

5.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

The rasterization process in Inkscape before 0.48.4 allows local users to read arbitrary files via an external entity in a SVG file, aka an XML external entity (XXE) injection attack.

El proceso de rasterización en Inkscape antes de v0.48.4 permite a los usuarios locales leer archivos de su elección a través de entidades externas en un archivo SVG. Se trata de un ataque también conocido como ataque de inyección XML a una entidad externa (XXE).

It was discovered that Inkscape incorrectly handled XML external entities in SVG files. If a user were tricked into opening a specially-crafted SVG file, Inkscape could possibly include external files in drawings, resulting in information disclosure. It was discovered that Inkscape attempted to open certain files from the /tmp directory instead of the current directory. A local attacker could trick a user into opening a different file than the one that was intended. This issue only applied to Ubuntu 11.10, Ubuntu 12.04 LTS and Ubuntu 12.10. Various other issues were also addressed.

*Credits: N/A

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Attack Vector

Local

Attack Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

None

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2012-10-24 CVE Reserved
2013-01-18 CVE Published
2024-08-06 CVE Updated
2024-08-06 First Exploit
2025-07-16 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-611: Improper Restriction of XML External Entity Reference

CAPEC

References (11)

URL	Tag	Source
http://www.securityfocus.com/bid/56965	Broken Link
https://launchpad.net/inkscape/+milestone/0.48.4	Product

URL	Date	SRC
http://www.openwall.com/lists/oss-security/2012/12/20/3	2024-08-06
https://bugs.launchpad.net/inkscape/+bug/1025185	2024-08-06

URL	Date	SRC
http://bazaar.launchpad.net/~inkscape.dev/inkscape/trunk/revision/11931	2024-02-15

URL	Date	SRC
http://lists.fedoraproject.org/pipermail/package-announce/2012-December/095024.html	2024-02-15
http://lists.fedoraproject.org/pipermail/package-announce/2013-January/095380.html	2024-02-15
http://lists.fedoraproject.org/pipermail/package-announce/2013-January/095398.html	2024-02-15
http://lists.opensuse.org/opensuse-updates/2013-02/msg00041.html	2024-02-15
http://lists.opensuse.org/opensuse-updates/2013-02/msg00043.html	2024-02-15
http://www.ubuntu.com/usn/USN-1712-1	2024-02-15

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Inkscape Search vendor "Inkscape"		Inkscape Search vendor "Inkscape" for product "Inkscape"				< 0.48.4 Search vendor "Inkscape" for product "Inkscape" and version " < 0.48.4"		-		Affected
Fedoraproject Search vendor "Fedoraproject"		Fedora Search vendor "Fedoraproject" for product "Fedora"				16 Search vendor "Fedoraproject" for product "Fedora" and version "16"		-		Affected
Fedoraproject Search vendor "Fedoraproject"		Fedora Search vendor "Fedoraproject" for product "Fedora"				17 Search vendor "Fedoraproject" for product "Fedora" and version "17"		-		Affected
Fedoraproject Search vendor "Fedoraproject"		Fedora Search vendor "Fedoraproject" for product "Fedora"				18 Search vendor "Fedoraproject" for product "Fedora" and version "18"		-		Affected
Canonical Search vendor "Canonical"		Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux"				10.04 Search vendor "Canonical" for product "Ubuntu Linux" and version "10.04"		-		Affected
Canonical Search vendor "Canonical"		Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux"				11.10 Search vendor "Canonical" for product "Ubuntu Linux" and version "11.10"		-		Affected
Canonical Search vendor "Canonical"		Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux"				12.04 Search vendor "Canonical" for product "Ubuntu Linux" and version "12.04"		-		Affected
Canonical Search vendor "Canonical"		Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux"				12.10 Search vendor "Canonical" for product "Ubuntu Linux" and version "12.10"		-		Affected
Opensuse Search vendor "Opensuse"		Opensuse Search vendor "Opensuse" for product "Opensuse"				11.4 Search vendor "Opensuse" for product "Opensuse" and version "11.4"		-		Affected
Opensuse Search vendor "Opensuse"		Opensuse Search vendor "Opensuse" for product "Opensuse"				12.1 Search vendor "Opensuse" for product "Opensuse" and version "12.1"		-		Affected
Opensuse Search vendor "Opensuse"		Opensuse Search vendor "Opensuse" for product "Opensuse"				12.2 Search vendor "Opensuse" for product "Opensuse" and version "12.2"		-		Affected