Lucene search

K

Kaspersky LabKLA10569

HistoryApr 28, 2015 - 12:00 a.m.

KLA10569 Vulnerability in OpenOffice

2015-04-2800:00:00

Kaspersky Lab

threats.kaspersky.com

18

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.017 Low

EPSS

Percentile

87.5%

Detect date:

04/28/2015

Severity:

High

Description:

Vulnerability in OpenOffice’s HWP filter was found in Apache OpenOffice 4.1.1 and older. By exploiting this vulnerability malicious users can cause denial of service (crash) or possibly execute arbitrary code. This vulnerability can be exploited via a crafted HWP document.

Affected products:

Apache OpenOffice versions earlier than 4.1.2

Solution:

Update to the latest version
Get OpenOffice

Original advisories:

OpenOffice Bulletin

Impacts:

ACE

Related products:

CVE-IDS:

CVE-2015-17746.8High

References

www.openoffice.org/download/index.html

www.openoffice.org/security/cves/CVE-2015-1774.html

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1774

statistics.securelist.com/vulnerability-scan/month

threats.kaspersky.com/en/product/OpenOffice.org/

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.017 Low

EPSS

Percentile

87.5%

Related for KLA10569

nessus13 openvas14 osv1 redhat1 fedora2 freebsd1 cvelist1 kaspersky1 prion1 debian3 oraclelinux1 ubuntucve1 centos1 veracode1 cve1 mageia1 securityvulns2 debiancve1 ubuntu1 gentoo1