Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusUbuntu Security Notice (C) 2016-2023 Canonical, Inc. / NASL script (C) 2016-2023 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-3046-1.NASL
HistoryAug 05, 2016 - 12:00 a.m.

Ubuntu 12.04 LTS : libreoffice vulnerability (USN-3046-1)

2016-08-0500:00:00
Ubuntu Security Notice (C) 2016-2023 Canonical, Inc. / NASL script (C) 2016-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
12
JSON

Yves Younan and Richard Johnson discovered that LibreOffice incorrectly handled presentation files. If a user were tricked into opening a specially crafted presentation file, a remote attacker could cause LibreOffice to crash, and possibly execute arbitrary code.

Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-3046-1. The text 
# itself is copyright (C) Canonical, Inc. See 
# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered 
# trademark of Canonical, Inc.
#

include("compat.inc");

if (description)
{
  script_id(92750);
  script_version("2.12");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/01/12");

  script_cve_id("CVE-2016-1513");
  script_xref(name:"USN", value:"3046-1");

  script_name(english:"Ubuntu 12.04 LTS : libreoffice vulnerability (USN-3046-1)");
  script_summary(english:"Checks dpkg output for updated package.");

  script_set_attribute(
    attribute:"synopsis",
    value:"The remote Ubuntu host is missing a security-related patch."
  );
  script_set_attribute(
    attribute:"description",
    value:
"Yves Younan and Richard Johnson discovered that LibreOffice
incorrectly handled presentation files. If a user were tricked into
opening a specially crafted presentation file, a remote attacker could
cause LibreOffice to crash, and possibly execute arbitrary code.

Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://usn.ubuntu.com/3046-1/"
  );
  script_set_attribute(
    attribute:"solution",
    value:"Update the affected libreoffice-core package."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libreoffice-core");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:12.04:-:lts");

  script_set_attribute(attribute:"vuln_publication_date", value:"2016/08/05");
  script_set_attribute(attribute:"patch_publication_date", value:"2016/08/04");
  script_set_attribute(attribute:"plugin_publication_date", value:"2016/08/05");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"Ubuntu Security Notice (C) 2016-2023 Canonical, Inc. / NASL script (C) 2016-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Ubuntu Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("ubuntu.inc");
include("misc_func.inc");

if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/Ubuntu/release");
if ( isnull(release) ) audit(AUDIT_OS_NOT, "Ubuntu");
var release = chomp(release);
if (! preg(pattern:"^(12\.04)$", string:release)) audit(AUDIT_OS_NOT, "Ubuntu 12.04", "Ubuntu " + release);
if ( ! get_kb_item("Host/Debian/dpkg-l") ) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);

var flag = 0;

if (ubuntu_check(osver:"12.04", pkgname:"libreoffice-core", pkgver:"1:3.5.7-0ubuntu12")) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : ubuntu_report_get()
  );
  exit(0);
}
else
{
  var tested = ubuntu_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "libreoffice-core");
}
VendorProductVersionCPE
canonicalubuntu_linuxlibreoffice-corep-cpe:/a:canonical:ubuntu_linux:libreoffice-core
canonicalubuntu_linux12.04cpe:/o:canonical:ubuntu_linux:12.04:-:lts

Related

debian 1
ubuntu 1
debiancve 1
openvas 4
nessus 4
ubuntucve 1
cve 1
prion 1
kaspersky 1
seebug 1
gentoo 1
talos 1
freebsd 1
debian
debian
[SECURITY] [DLA 591-1] libreoffice security update
2016-08-09 11:20:55
ubuntu
ubuntu
LibreOffice vulnerability
2016-08-04 00:00:00
debiancve
debiancve
CVE-2016-1513
2016-08-05 14:59:00
openvas
openvas
Ubuntu: Security Advisory (USN-3046-1)
2016-08-08 00:00:00
Debian: Security Advisory (DLA-591-1)
2023-03-08 00:00:00
Apache OpenOffice 'Impress Tool' Denial of Service Vulnerability - Windows
2016-08-16 00:00:00
nessus
nessus
GLSA-201703-01 : OpenOffice: User-assisted execution of arbitrary code
2017-03-20 00:00:00
Debian DLA-591-1 : libreoffice security update
2016-08-10 00:00:00
FreeBSD : Apache OpenOffice 4.1.2 -- Memory Corruption Vulnerability (Impress Presentations) (72f71e26-4f69-11e6-ac37-ac9e174be3af)
2016-07-22 00:00:00
ubuntucve
ubuntucve
CVE-2016-1513
2016-08-04 00:00:00
cve
cve
CVE-2016-1513
2016-08-05 14:59:00
prion
prion
Out-of-bounds
2016-08-05 14:59:00
kaspersky
kaspersky
KLA10855 Memory corruption vulnerability in Apache OpenOffice
2016-07-21 00:00:00
seebug
seebug
OpenOffice Impress MetaActions Arbitrary Read Write Vulnerability(CVE-2016-1513)
2017-10-16 00:00:00
gentoo
gentoo
OpenOffice: User-assisted execution of arbitrary code
2017-03-19 00:00:00
talos
talos
OpenOffice Impress MetaActions Arbitrary Read Write Vulnerability
2016-07-21 00:00:00
freebsd
freebsd
Apache OpenOffice 4.1.2 -- Memory Corruption Vulnerability (Impress Presentations)
2016-07-17 00:00:00
JSON
Related for UBUNTU_USN-3046-1.NASL
debian1ubuntu1debiancve1openvas4nessus4ubuntucve1cve1prion1kaspersky1seebug1gentoo1talos1freebsd1