KLA11519
Multiple vulnerabilities in LibreOffice
Обновлено: 19/07/2019
Дата обнаружения
16/07/2019
Уровень угрозы
Critical
Описание

Multiple vulnerabilities were found in LibreOffice. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions.

Below is a complete list of vulnerabilities:

  1. An improper script handling issue can be exploited remotely via a specially crafted file to execute arbitrary code;
  2. An improper stealth mode handling issue can be exploited to bypass security restrictions.
Пораженные продукты

LibreOffice earlier than 6.2.5

Решение

Update to the latest version
Download LibreOffice

Первичный источник обнаружения
CVE-2019-9848 LibreLogo arbitrary script execution
CVE-2019-9849 remote bullet graphics retrieved in 'stealth mode'
Оказываемое влияние
?
ACE 
[?]

SB 
[?]
CVE-IDS
CVE-2019-98480.0Unknown
CVE-2019-98490.0Unknown