Lucene search

K
openvasCopyright (C) 2014 Greenbone AGOPENVAS:1361412562310804886
HistoryNov 19, 2014 - 12:00 a.m.

LibreOffice Impress Remote Socket Manager RCE Vulnerability (Nov 2014) - Mac OS X

2014-11-1900:00:00
Copyright (C) 2014 Greenbone AG
plugins.openvas.org
20

7.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.79 High

EPSS

Percentile

98.3%

LibreOffice is prone to a remote code execution (RCE) vulnerability.

# SPDX-FileCopyrightText: 2014 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

CPE = "cpe:/a:libreoffice:libreoffice";

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.804886");
  script_version("2024-02-09T05:06:25+0000");
  script_cve_id("CVE-2014-3693");
  script_tag(name:"cvss_base", value:"7.5");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_tag(name:"last_modification", value:"2024-02-09 05:06:25 +0000 (Fri, 09 Feb 2024)");
  script_tag(name:"creation_date", value:"2014-11-19 15:18:35 +0530 (Wed, 19 Nov 2014)");
  script_name("LibreOffice Impress Remote Socket Manager RCE Vulnerability (Nov 2014) - Mac OS X");

  script_tag(name:"summary", value:"LibreOffice is prone to a remote code execution (RCE) vulnerability.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");

  script_tag(name:"insight", value:"Flaw exists due to use-after-free error
  in the Impress Remote socket manager.");

  script_tag(name:"impact", value:"Successful exploitation will allow attackers
  to cause a denial of service (crash) or possibly execute arbitrary code.");

  script_tag(name:"affected", value:"LibreOffice version 4.x prior
  to 4.2.7 and 4.3.x prior to 4.3.3 on Mac OS X");

  script_tag(name:"solution", value:"Upgrade to LibreOffice 4.2.7 or 4.3.3
  or later.");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"package");

  script_xref(name:"URL", value:"http://secunia.com/advisories/62132");
  script_xref(name:"URL", value:"https://www.libreoffice.org/about-us/security/advisories/CVE-2014-3693");

  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2014 Greenbone AG");
  script_family("General");
  script_dependencies("gb_libreoffice_detect_macosx.nasl");
  script_mandatory_keys("LibreOffice/MacOSX/Version");
  exit(0);
}

include("host_details.inc");
include("version_func.inc");

if(!libreVer = get_app_version(cpe:CPE)){
  exit(0);
}

if(libreVer =~ "^(4\.)")
{
  if(version_is_less(version:libreVer, test_version:"4.2.7"))
  {
    report = report_fixed_ver(installed_version:libreVer, fixed_version:"4.2.7");
    security_message(port:0, data:report);
  }
}

if(libreVer =~ "^(4\.3)")
{
  if(version_is_less(version:libreVer, test_version:"4.3.3"))
  {
    report = report_fixed_ver(installed_version:libreVer, fixed_version:"4.3.3");
    security_message(port:0, data:report);
    exit(0);
  }
}

7.1 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.79 High

EPSS

Percentile

98.3%