Lucene search

LibreOffice Graphic Object Loading Buffer Overflow Vulnerability - Mac OS X

Buffer overflow vulnerability in LibreOffice Graphic Object Loading on Mac OS

Reporter	Title	Published	Views	Family All 74
Tenable Nessus	Fedora 16 : libreoffice-3.4.5.2-15.fc16 (2012-8042)	29 May 201200:00	–	nessus
Tenable Nessus	Debian DSA-2473-1 : openoffice.org - buffer overflow	17 May 201200:00	–	nessus
Tenable Nessus	Mandriva Linux Security Advisory : libreoffice (MDVSA-2012:091)	6 Sep 201200:00	–	nessus
Tenable Nessus	LibreOffice < 3.5.3 Multiple Memory Corruption Vulnerabilities	17 May 201200:00	–	nessus
Tenable Nessus	Scientific Linux Security Update : openoffice.org on SL5.x, SL6.x i386/x86_64 (20120604)	1 Aug 201200:00	–	nessus
Tenable Nessus	Debian DSA-2487-1 : openoffice.org - buffer overflow	29 Jun 201200:00	–	nessus
Tenable Nessus	RHEL 5 / 6 : openoffice.org (RHSA-2012:0705)	5 Jun 201200:00	–	nessus
Tenable Nessus	Fedora 15 : libreoffice-3.3.4.1-5.fc15 (2012-8114)	14 Jun 201200:00	–	nessus
Tenable Nessus	SuSE 11.1 Security Update : LibreOffice (SAT Patch Number 6003)	12 Apr 201200:00	–	nessus
Tenable Nessus	Ubuntu 11.04 / 11.10 : libreoffice, libreoffice-l10n vulnerabilities (USN-1495-1)	3 Jul 201200:00	–	nessus

Source	Link
secunia	www.secunia.com/advisories/47244
libreoffice	www.libreoffice.org/advisories/cve-2012-1149
securityfocus	www.securityfocus.com/bid/53570

# SPDX-FileCopyrightText: 2012 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.803085");
  script_version("2024-02-15T05:05:39+0000");
  script_cve_id("CVE-2012-1149");
  script_tag(name:"cvss_base", value:"7.5");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_tag(name:"last_modification", value:"2024-02-15 05:05:39 +0000 (Thu, 15 Feb 2024)");
  script_tag(name:"creation_date", value:"2012-12-24 16:32:25 +0530 (Mon, 24 Dec 2012)");
  script_name("LibreOffice Graphic Object Loading Buffer Overflow Vulnerability - Mac OS X");
  script_xref(name:"URL", value:"http://secunia.com/advisories/47244");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/53570");
  script_xref(name:"URL", value:"http://www.libreoffice.org/advisories/cve-2012-1149");

  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2012 Greenbone AG");
  script_family("Buffer overflow");
  script_dependencies("gb_libreoffice_detect_macosx.nasl");
  script_mandatory_keys("LibreOffice/MacOSX/Version");
  script_tag(name:"insight", value:"An integer overflow error within the vclmi.dll module when allocating memory
  for an embedded image object allows attacker to crash the application.");
  script_tag(name:"solution", value:"Upgrade to LibreOffice version 3.5.3 or later.");
  script_tag(name:"summary", value:"LibreOffice is prone to a buffer overflow vulnerability.");
  script_tag(name:"impact", value:"Successful exploitation will allow remote attackers to cause a denial of
  service condition or execute arbitrary code.");
  script_tag(name:"affected", value:"LibreOffice version before 3.5.3 on Mac OS X");
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");
  exit(0);
}

include("version_func.inc");

libreVer = get_kb_item("LibreOffice/MacOSX/Version");
if(!libreVer){
  exit(0);
}

if(version_is_less(version: libreVer, test_version:"3.5.3")){
  report = report_fixed_ver(installed_version:libreVer, fixed_version:"3.5.3");
  security_message(port:0, data:report);
}

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

24 Dec 2012 00:00Current

6.7Medium risk

Vulners AI Score6.7

CVSS27.5

EPSS0.0271

libreoffice buffer overflow vulnerability mac os x remote attackers denial of service arbitrary code upgrade