Дата обнаружения
|
10/11/2015 |
Уровень угрозы
|
High |
Описание
|
Multiple serious vulnerabilities have been found in LibreOffice. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities
Technical details Vulnerability (2) can be exploited only if configuration setting «Load printer settings with the document» is enabled. To exploit this vulnerability attacker can use a specially designed PrinterSetup data in ODF. Vulnerability (3) caused by storing number of document pieces in 16bit unsigned number. Sufficiently long file can cause overflow. |
Пораженные продукты
|
LibreOffice versions earlier than 4.4.5 |
Решение
|
Update to the latest version |
Первичный источник обнаружения
|
LibreOffice advisory |
Оказываемое влияние
?
|
ACE
[?]
OSI
[?]
DoS
[?]
|
Связанные продукты
|
LibreOffice |
CVE-IDS
|
|
Узнай статистику распространения уязвимостей в твоем регионе |