Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
certCERTVU:953183
HistoryJun 22, 2011 - 12:00 a.m.

LibreOffice 3.3 'Lotus Word Pro' document import filter contains multiple vulnerabilities

2011-06-2200:00:00
www.kb.cert.org
21

0.124 Low

EPSS

Percentile

95.4%

JSON

Overview

LibreOffice 3.3.2 includes a feature to import ‘Lotus Word Pro’ (.lwp) documents. This import filter contains multiple vulnerabilities. CERT/CC has confirmed that code execution is possible by exploiting a stack buffer overflow.

Description

LibreOffice 3.3.2, 3.3.1, and possibly earlier versions fail to properly handle ‘Lotus Word Pro’ (.lwp) documents. The (.lwp) format is the native file format for Lotus Word Pro that is a word processor developed by IBM’s Lotus Software group. More details can be found by reviewing the following patch commits: Commit 1 and Commit 2.

Impact

By convincing a user to open a specifically crafted ‘Lotus Word Pro’ (.lwp) document, an attacker may be able to execute arbitrary code.

Solution

Apply an Update

LibreOffice 3.3.3 and 3.4.0 both address these vulnerabilities.

Vendor Information

953183

Filter by status: All Affected Not Affected Unknown

Filter by content: __ Additional information available

__ Sort by: Status Alphabetical

Expand all

Javascript is disabled. Click here to view vendors.

LibreOffice Affected

Notified: April 06, 2011 Updated: June 06, 2011

Status

Affected

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

CVSS Metrics

Group Score Vector
Base 9 AV:N/AC:M/Au:N/C:C/I:C/A:P
Temporal 7 E:POC/RL:OF/RC:C
Environmental 7 CDP:ND/TD:ND/CR:ND/IR:ND/AR:ND

References

Acknowledgements

Thanks to Will Dormann and Jared Allar of the CERT/CC for reporting these vulnerabilities.

This document was written by Jared Allar.

Other Information

CVE IDs: CVE-2011-2685
Severity Metric: 0.20 Date Public:

Related

debiancve 1
openvas 8
nessus 8
cvelist 1
prion 1
cve 1
ubuntucve 1
ubuntu 1
debiancve
debiancve
CVE-2011-2685
2011-07-21 23:55:00
openvas
openvas
LibreOffice LWP File Processing Multiple Buffer Overflow Vulnerabilities - Windows
2011-07-27 00:00:00
Debian Security Advisory DSA 2275-1 (openoffice.org)
2011-08-03 00:00:00
LibreOffice LWP File Processing Multiple Buffer Overflow Vulnerabilities (Windows)
2011-07-27 00:00:00
nessus
nessus
LibreOffice < 3.3.3 / 3.4.0 LWP File Handling Overflow
2011-07-13 00:00:00
LibreOffice < 3.3.3 / 3.4.0 LWP File Handling Overflow (Mac OS X)
2011-07-13 00:00:00
openSUSE Security Update : libreoffice-34 (openSUSE-SU-2011:1143-2)
2014-06-13 00:00:00
cvelist
cvelist
CVE-2011-2685
2011-07-21 23:00:00
prion
prion
Stack overflow
2011-07-21 23:55:00
cve
cve
CVE-2011-2685
2011-07-21 23:55:00
ubuntucve
ubuntucve
CVE-2011-2685
2011-07-21 00:00:00
ubuntu
ubuntu
OpenOffice.org vulnerabilities
2012-07-02 00:00:00

0.124 Low

EPSS

Percentile

95.4%

JSON
Related for VU:953183
debiancve1openvas8nessus8cvelist1prion1cve1ubuntucve1ubuntu1