395 matches found
libreoffice security and bug fix update
1:5.0.6.2-5.0.1.1 - Replaced RedHat colors with Oracle colors, and the filename redhat.soc with oracle.soc in specfile - Build with --with-vendor='Oracle America, Inc.' 1:5.0.6.2-5.1 - Resolves: rhbz1435534 CVE-2017-3157 Arbitrary file disclosure in Calc and Writer 1:5.0.6.2-5 - Resolves:...
LibreOffice Calc And Writer File Disclosure Vulnerability - Mac OS X
LibreOffice is prone to arbitrary file disclosure vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
LibreOffice Information Disclosure Vulnerability
LibreOffice is an open source office software suite. The suite includes software for text documents, spreadsheets, presentations, drawings, databases, and more, and is developed by The Document Foundation The Document Foundation, TDF. A security vulnerability exists in LibreOffice Calc and Writer...
Ubuntu 14.04 LTS / 16.04 LTS : LibreOffice vulnerability (USN-3210-1)
The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-3210-1 advisory. Ben Hayak discovered that it was possible to make LibreOffice Calc and Writer disclose arbitrary files to an attacker if a user opened a specially...
Debian DSA-3792-1 : libreoffice - security update
Ben Hayak discovered that objects embedded in Writer and Calc documents may result in information disclosure. Please see https://www.libreoffice.org/about-us/security/advisories/cve-2017-3157 /for additional information. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text an...
USN-3210-1: LibreOffice vulnerability
Ben Hayak discovered that it was possible to make LibreOffice Calc and Writer disclose arbitrary files to an attacker if a user opened a specially crafted file with embedded links...
PT-2017-4325 · Secret Rabbit Code +3 · Libsamplerate +3
Name of the Vulnerable Software and Affected Versions: libsamplerate versions prior to 0.1.9 Description: The issue is related to a buffer over-read in the calc output single function of the src sinc.c component in the Secret Rabbit Code library, which is used for audio sample rate conversion. Th...
PHP 5.0.0 - tidy_parse_file() Local Buffer Overflow
PHP 5.0.0 - tidyparsefile Local Buffer Overflow...
Apache OpenOffice -- multiple vulnerabilities
The Apache Openofffice project reports: CVE-2017-3157: Arbitrary file disclosure in Calc and Writer By exploiting the way OpenOffice renders embedded objects, an attacker could craft a document that allows reading in a file from the user's filesystem. Information could be retrieved by the attacke...
NScan 0.91 local code execution vulnerability
No description provided by source. import struct rp=struct.pack"L", 0x75658BD5 JMP ESP kernel32 Modified 'calc.exe' shellcode Windows 7 SP1 for this exploit sc="\x31\xF6\x56\x64\x8B\x76\x30\x8B\x76\x0C\x8B\x76\x1C\x8B" "\x6E\x08\x8B\x36\x8B\x5D\x3C\x8B\x5C\x1D\x78\x01\xEB\x8B"...
Arbitrary Code Injection
Overview Affected versions of reduce-css-calc pass input directly to eval. If user input is passed into the calc function, this may result in cross-site scripting on the browser, or remote code execution on the server. Proof of Concept const reduceCSSCalc = require'reduce-css-calc';...
Refuel Calc - Certificates or keys found, Dynamic Code Loading, Exported components vulnerabilities
HackApp vulnerability scanner discovered that application Refuel Calc published at the 'play' market has multiple vulnerabilities...
Calc JPN Currency - Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Calc JPN Currency published at the 'play' market has multiple vulnerabilities...
GLSA-201603-05 : LibreOffice, OpenOffice: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201603-05 LibreOffice, OpenOffice: Multiple vulnerabilities Multiple vulnerabilities were found in both LibreOffice and OpenOffice that allow the remote execution of arbitrary code and potential Denial of Service. These...
LibreOffice and Apache OpenOffice Information Disclosure Vulnerability
LibreOffice and Apache OpenOffice are both open source office software suites. The suite contains text documents, spreadsheets, presentations, drawings, databases and other software. The former by the Document Foundation The Document Foundation, TDF development; the latter by the United States...
CVE-2015-4551
LibreOffice before 4.4.5 and Apache OpenOffice before 4.1.2 uses the stored LinkUpdateMode configuration information in OpenDocument Format files and templates when handling links, which might allow remote attackers to obtain sensitive information via a crafted document, which embeds data from...
Format string
LibreOffice before 4.4.5 and Apache OpenOffice before 4.1.2 uses the stored LinkUpdateMode configuration information in OpenDocument Format files and templates when handling links, which might allow remote attackers to obtain sensitive information via a crafted document, which embeds data from...
DEBIAN-CVE-2015-4551
LibreOffice before 4.4.5 and Apache OpenOffice before 4.1.2 uses the stored LinkUpdateMode configuration information in OpenDocument Format files and templates when handling links, which might allow remote attackers to obtain sensitive information via a crafted document, which embeds data from...
CVE-2015-4551
LibreOffice before 4.4.5 and Apache OpenOffice before 4.1.2 uses the stored LinkUpdateMode configuration information in OpenDocument Format files and templates when handling links, which might allow remote attackers to obtain sensitive information via a crafted document, which embeds data from...
USN-2793-1 libreoffice vulnerabilities
Federico Scrinzi discovered that LibreOffice incorrectly handled documents inserted into Writer or Calc via links. If a user were tricked into opening a specially crafted document, a remote attacker could possibly obtain the contents of arbitrary files. CVE-2015-4551 It was discovered that...