LibreOffice Import Files Denial Of Service Vulnerabilities (Mac OS X) Network Vulnerability

Summary

This host is installed with LibreOffice and is prone to denial of service vulnerability.

Impact

Successful exploitation will allow remote attackers to cause a denial of service condition. Impact Level: Application

Solution

Upgrade to LibreOffice version 3.5.7.2 or 3.6.1 or later. For updates refer to http://www.libreoffice.org/download/

Insight

The flaws exists in multiple import files, which allows attacker to crash the application via a crafted file in the .xls (Excel), .wmf (Window Meta File) or Open Document Format files.

Affected

LibreOffice version 3.5.x before 3.5.7.2 and 3.6.x before 3.6.1 on Mac OS X

References

http://osvdb.org/86853
http://securitytracker.com/id?1027727
http://www.libreoffice.org/advisories/cve-2012-4233/
https://www.htbridge.com/advisory/HTB23106

Updated on 2015-03-25

Severity

Classification

CVE CVE-2012-4233

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P

Related Vulnerabilities

ejabberd 'mod_pubsub' Module Denial of Service Vulnerability
Cogent DataHub Integer Overflow Vulnerability
FreeRADIUS Tunnel-Password Denial Of Service Vulnerability
avast! AntiVirus Multiple BOF Vulnerabilities (Linux)
Django Forms Library Algorithmic Complexity Vulnerability

LibreOffice Import Files Denial of Service Vulnerabilities (Mac OS X)

Take action and discover your vulnerabilities