Lucene search

LibreOffice Import Files Denial of Service Vulnerabilities (Windows)

The host is installed with LibreOffice and is prone to denial of service vulnerability due to import file flaws allowing attackers to crash the application via crafted files in .xls, .wmf, or Open Document Format files. Successful exploitation will allow remote attackers to cause a denial of service condition. Impact Level: Application

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 26
Tenable Nessus	SuSE 10 Security Update : LibreOffice (ZYPP Patch Number 8286)	1 Nov 201200:00	–	nessus
Tenable Nessus	SuSE 11.2 Security Update : LibreOffice (SAT Patch Number 6804)	25 Jan 201300:00	–	nessus
Tenable Nessus	openSUSE Security Update : LibreOffice (openSUSE-SU-2012:1523-1)	13 Jun 201400:00	–	nessus
Tenable Nessus	openSUSE Security Update : libreoffice (openSUSE-SU-2012:1686-1)	13 Jun 201400:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2012-4233	4 Mar 202500:00	–	nessus
Tenable Nessus	LibreOffice < 3.5.7 / 3.6.1 Multiple Denial of Service Vulnerabilities (Mac OS X)	4 Apr 201400:00	–	nessus
Tenable Nessus	LibreOffice < 3.5.7 / 3.6.1 Multiple Denial of Service Vulnerabilities	4 Apr 201400:00	–	nessus
Tenable Nessus	Debian DSA-2570-1 : openoffice.org - several vulnerabilities	1 Nov 201200:00	–	nessus
Tenable Nessus	RHEL 5 : libreoffice (Unpatched Vulnerability)	3 Jun 202400:00	–	nessus
Tenable Nessus	RHEL 6 : libreoffice (Unpatched Vulnerability)	3 Jun 202400:00	–	nessus

Source	Link
libreoffice	www.libreoffice.org/advisories/cve-2012-4233/
htbridge	www.htbridge.com/advisory/HTB23106
securitytracker	www.securitytracker.com/id

###############################################################################
# OpenVAS Vulnerability Test
# $Id: gb_libreoffice_mult_files_dos_vuln_win.nasl 7174 2017-09-18 11:48:08Z asteins $
#
# LibreOffice Import Files Denial of Service Vulnerabilities (Windows)
#
# Authors:
# Rachana Shetty <[email protected]>
#
# Copyright:
# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

tag_impact = "Successful exploitation will allow remote attackers to cause a denial of
  service condition.
  Impact Level: Application";
tag_affected = "LibreOffice version 3.5.x before 3.5.7.2 and 3.6.x before 3.6.1";

tag_insight = "The flaws exist in multiple import files, which allows attacker to crash
  the application via a crafted file in the .xls (Excel), .wmf
  (Window Meta File) or Open Document Format files.";
tag_solution = "Upgrade to LibreOffice version 3.5.7.2 or 3.6.1 or later.
  For updates refer to http://www.libreoffice.org/download/";
tag_summary = "This host is installed with LibreOffice and is prone to denial of
  service vulnerability.";

if(description)
{
  script_id(803064);
  script_version("$Revision: 7174 $");
  script_cve_id("CVE-2012-4233");
  script_bugtraq_id(56352);
  script_tag(name:"cvss_base", value:"4.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:N/I:N/A:P");
  script_tag(name:"last_modification", value:"$Date: 2017-09-18 13:48:08 +0200 (Mon, 18 Sep 2017) $");
  script_tag(name:"creation_date", value:"2012-11-26 13:04:53 +0530 (Mon, 26 Nov 2012)");
  script_name("LibreOffice Import Files Denial of Service Vulnerabilities (Windows)");
  script_xref(name : "URL" , value : "http://securitytracker.com/id?1027727");
  script_xref(name : "URL" , value : "https://www.htbridge.com/advisory/HTB23106");
  script_xref(name : "URL" , value : "http://www.libreoffice.org/advisories/cve-2012-4233/");

  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (c) 2012 Greenbone Networks GmbH");
  script_family("Denial of Service");
  script_dependencies("secpod_libre_office_detect_win.nasl");
  script_require_keys("LibreOffice/Win/Ver");
  script_tag(name : "insight" , value : tag_insight);
  script_tag(name : "solution" , value : tag_solution);
  script_tag(name : "summary" , value : tag_summary);
  script_tag(name : "impact" , value : tag_impact);
  script_tag(name : "affected" , value : tag_affected);
  script_tag(name:"qod_type", value:"registry");
  script_tag(name:"solution_type", value:"VendorFix");
  exit(0);
}


include("version_func.inc");

officeVer = "";

## Get the version from KB
officeVer = get_kb_item("LibreOffice/Win/Ver");
if(!officeVer){
  exit(0);
}

## Check for LibreOffice version 3.6.0.x and 3.5.x before 3.5.7.2
if(officeVer =~ "^3.6.0" ||
   version_in_range(version:officeVer, test_version:"3.5", test_version2:"3.5.7.1")){
  security_message(0);
}

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

26 Nov 2012 00:00Current

7.4High risk

Vulners AI Score7.4

EPSS0.02731