Lucene search

K

[email protected]NVD:CVE-2015-5214

HistoryNov 10, 2015 - 5:59 p.m.

CVE-2015-5214

2015-11-1017:59:04

CWE-119

[email protected]

web.nvd.nist.gov

2

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

Low

0.019 Low

EPSS

Percentile

88.5%

LibreOffice before 4.4.6 and 5.x before 5.0.1 and Apache OpenOffice before 4.1.2 allows remote attackers to cause a denial of service (memory corruption and application crash) or execute arbitrary code via an index to a non-existent bookmark in a DOC file.

Affected configurations

NVD

Node

canonicalubuntu_linuxMatch12.04lts

OR

canonicalubuntu_linuxMatch14.04lts

OR

canonicalubuntu_linuxMatch15.04

OR

debiandebian_linuxMatch7.0

OR

debiandebian_linuxMatch8.0

Node

libreofficelibreofficeRange≤4.4.5

Node

apacheopenofficeRange≤4.1.1

References

rhn.redhat.com/errata/RHSA-2015-2619.html

www.debian.org/security/2015/dsa-3394

www.libreoffice.org/about-us/security/advisories/cve-2015-5214/

www.openoffice.org/security/cves/CVE-2015-5214.html

www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html

www.securityfocus.com/bid/77486

www.securitytracker.com/id/1034086

www.securitytracker.com/id/1034091

www.ubuntu.com/usn/USN-2793-1

security.gentoo.org/glsa/201603-05

security.gentoo.org/glsa/201611-03

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

Low

0.019 Low

EPSS

Percentile

88.5%

Related for NVD:CVE-2015-5214

kaspersky2 cve1 debiancve1 cvelist1 nessus16 openvas14 prion1 ubuntucve1 veracode2 oraclelinux1 redhat1 debian1 osv1 freebsd1 mageia1 centos1 ubuntu1 gentoo2