Executive Summary
Summary | |
---|---|
Title | LibreOffice 3.3 'Lotus Word Pro' document import filter contains multiple vulnerabilities |
Informations | |||
---|---|---|---|
Name | VU#953183 | First vendor Publication | 2011-06-22 |
Vendor | VU-CERT | Last vendor Modification | 2011-06-22 |
Severity (Vendor) | N/A | Revision | M |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 9.3 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Vulnerability Note VU#953183LibreOffice 3.3 'Lotus Word Pro' document import filter contains multiple vulnerabilitiesOverviewLibreOffice 3.3.2 includes a feature to import 'Lotus Word Pro' (.lwp) documents. This import filter contains multiple vulnerabilities. CERT/CC has confirmed that code execution is possible by exploiting a stack buffer overflow.I. DescriptionLibreOffice 3.3.2, 3.3.1, and possibly earlier versions fail to properly handle 'Lotus Word Pro' (.lwp) documents. The (.lwp) format is the native file format for Lotus Word Pro that is a word processor developed by IBM's Lotus Software group. More details can be found by reviewing the following patch commits: Commit 1 and Commit 2.II. ImpactBy convincing a user to open a specifically crafted 'Lotus Word Pro' (.lwp) document, an attacker may be able to execute arbitrary code.III. SolutionApply an UpdateLibreOffice 3.3.3 and 3.4.0 both address these vulnerabilities.
Referenceshttp://www.libreoffice.org/download/ Thanks to Will Dormann and Jared Allar of the CERT/CC for reporting these vulnerabilities. This document was written by Jared Allar.
|
Original Source
Url : http://www.kb.cert.org/vuls/id/953183 |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
100 % | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
CPE : Common Platform Enumeration
OpenVAS Exploits
Date | Description |
---|---|
2012-07-03 | Name : Ubuntu Update for openoffice.org USN-1496-1 File : nvt/gb_ubuntu_USN_1496_1.nasl |
2011-07-27 | Name : LibreOffice LWP File Processing Multiple Buffer Overflow Vulnerabilities (Linux) File : nvt/secpod_libre_office_lwp_mult_bof_vuln_lin.nasl |
2011-07-27 | Name : LibreOffice LWP File Processing Multiple Buffer Overflow Vulnerabilities (Win... File : nvt/secpod_libre_office_lwp_mult_bof_vuln_win.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
73314 | LibreOffice LWP File Handling Overflow |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_3_libreoffice-34-111007.nasl - Type : ACT_GATHER_INFO |
2014-06-13 | Name : The remote openSUSE host is missing a security update. File : suse_11_4_libreoffice-34-111007.nasl - Type : ACT_GATHER_INFO |
2012-09-06 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2011-172.nasl - Type : ACT_GATHER_INFO |
2012-07-03 | Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1496-1.nasl - Type : ACT_GATHER_INFO |
2011-12-13 | Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_libreoffice-34-111012.nasl - Type : ACT_GATHER_INFO |
2011-12-13 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_libreoffice-34-7791.nasl - Type : ACT_GATHER_INFO |
2011-07-13 | Name : The remote Windows host has a program affected by a buffer overflow vulnerabi... File : libreoffice_340.nasl - Type : ACT_GATHER_INFO |
2011-07-13 | Name : The remote Mac OS X host has a program affected by a buffer overflow vulnerab... File : macosx_libreoffice_340.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2014-02-17 12:08:18 |
|