LibreOffice Import Files Denial Of Service Vulnerabilities (Windows) Network Vulnerability

Summary

This host is installed with LibreOffice and is prone to denial of service vulnerability.

Impact

Successful exploitation will allow remote attackers to cause a denial of service condition. Impact Level: Application

Solution

Upgrade to LibreOffice version 3.5.7.2 or 3.6.1 or later. For updates refer to http://www.libreoffice.org/download/

Insight

The flaws exists in multiple import files, which allows attacker to crash the application via a crafted file in the .xls (Excel), .wmf (Window Meta File) or Open Document Format files.

Affected

LibreOffice version 3.5.x before 3.5.7.2 and 3.6.x before 3.6.1

References

http://osvdb.org/86853
http://securitytracker.com/id?1027727
http://www.libreoffice.org/advisories/cve-2012-4233/
https://www.htbridge.com/advisory/HTB23106

Updated on 2015-03-25

Severity

Classification

CVE CVE-2012-4233

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Asterisk RTP Text Frames Denial Of Service Vulnerability
Adobe Flash Media Server Remote Denial of Service Vulnerability (August-2011)
Django Forms Library Algorithmic Complexity Vulnerability
Asterisk Products Invalid SDP SIP Channel Driver DoS Vulnerability
Apple Safari Nested 'object' Tag Remote Denial Of Service vulnerability

LibreOffice Import Files Denial of Service Vulnerabilities (Windows)

Take action and discover your vulnerabilities