Дата обнаружения
|
10/11/2015 |
Уровень угрозы
|
High |
Описание
|
Multiple serious vulnerabilities have been found in OpenOffice. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities: Below is a complete list of vulnerabilities:
Technical details Vulnerability (2) can be exploited only if configuration setting «Load printer settings with the document» is enabled. To exploit this vulnerability attacker can use a specially designed PrinterSetup data in ODF. Vulnerability (3) caused by storing number of document pieces in 16bit unsigned number. Sufficiently long file can cause overflow. |
Пораженные продукты
|
Apache OpenOffice versions earlier than 4.1.2 |
Решение
|
Update to the latest version |
Оказываемое влияние
?
|
ACE
[?]
OSI
[?]
DoS
[?]
|
Связанные продукты
|
Apache OpenOffice |
CVE-IDS
|
|
Узнай статистику распространения уязвимостей в твоем регионе |