KLA11519
Multiple vulnerabilities in LibreOffice
Обновлено: 18/06/2020
Дата обнаружения
16/07/2019
Уровень угрозы
Critical
Описание

Multiple vulnerabilities were found in LibreOffice. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions.

Below is a complete list of vulnerabilities:

  1. An improper script handling issue can be exploited remotely via a specially crafted file to execute arbitrary code;
  2. An improper stealth mode handling issue can be exploited to bypass security restrictions.
Эксплуатация

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Пораженные продукты

LibreOffice earlier than 6.2.5

Решение

Update to the latest version
Download LibreOffice

Первичный источник обнаружения
CVE-2019-9848 LibreLogo arbitrary script execution
CVE-2019-9849 remote bullet graphics retrieved in 'stealth mode'
Оказываемое влияние
?
ACE 
[?]

SB 
[?]
Связанные продукты
LibreOffice
CVE-IDS
CVE-2019-98480.0Unknown
CVE-2019-98490.0Unknown