LibreOffice RTF File Handling Multiple Vulnerabilities Nov14 (Windows) Network Vulnerability

Summary

This host is installed with LibreOffice and is prone to multiple vulnerabilities.

Impact

Successful exploitation will allow attackers to cause a denial of service (crash) or possibly execute arbitrary code. Impact Level: System/Application

Solution

Upgrade to LibreOffice 4.3.5 or later, For updates refer to http://www.libreoffice.org

Insight

Flaw exists due to improper handling of rtf file.

Affected

LibreOffice version before 4.3.5 on Windows

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://www.osvdb.org/115069
https://bugs.freedesktop.org/show_bug.cgi?id=86449

Updated on 2015-03-25

Severity

Classification

CVE CVE-2014-9093

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Adobe AIR Multiple Vulnerabilities(APSB14-24)-(Windows)
Adobe Acrobat and Reader PDF Handling Code Execution Vulnerability (Mac OS X)
3S CoDeSys CmpWebServer Multiple Vulnerabilities
Adobe Air Multiple Vulnerabilities -01 May 13 (Mac OS X)
Adobe Acrobat Out-of-bounds Vulnerability Feb15 (Mac OS X)

Take action and discover your vulnerabilities