Lucene search
This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.OPENOFFICE_40.NASLHistoryAug 01, 2013 - 12:00 a.m.
Apache OpenOffice < 4.0 Multiple Memory Corruption Vulnerabilities
2013-08-0100:00:00
This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
16
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
59.1%
The version of Apache OpenOffice installed on the remote host is prior to 4.0. It is, therefore, affected by memory corruption vulnerabilities related to the handling of PLCF (Plex of Character Positions in File) data and unknown XML elements in OOXML files. This can lead to application crashes and, potentially, other unspecified impacts.
#
# (C) Tenable Network Security, Inc.
#
include("compat.inc");
if (description)
{
script_id(69185);
script_version("1.8");
script_cvs_date("Date: 2019/11/27");
script_cve_id("CVE-2013-2189", "CVE-2013-4156");
script_bugtraq_id(61465, 61468);
script_name(english:"Apache OpenOffice < 4.0 Multiple Memory Corruption Vulnerabilities");
script_summary(english:"Checks the version of Apache OpenOffice.");
script_set_attribute(attribute:"synopsis", value:
"The remote Windows host has a program affected by multiple memory
corruption vulnerabilities.");
script_set_attribute(attribute:"description", value:
"The version of Apache OpenOffice installed on the remote host is prior
to 4.0. It is, therefore, affected by memory corruption
vulnerabilities related to the handling of PLCF (Plex of Character
Positions in File) data and unknown XML elements in OOXML files. This
can lead to application crashes and, potentially, other unspecified
impacts.");
script_set_attribute(attribute:"see_also", value:"http://www.openoffice.org/security/cves/CVE-2013-2189.html");
script_set_attribute(attribute:"see_also", value:"http://www.openoffice.org/security/cves/CVE-2013-4156.html");
script_set_attribute(attribute:"see_also", value:"https://blogs.apache.org/OOo/entry/a_short_celebration_and_then");
script_set_attribute(attribute:"solution", value:
"Upgrade to Apache OpenOffice version 4.0 or later.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2013-4156");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2013/07/23");
script_set_attribute(attribute:"patch_publication_date", value:"2013/07/23");
script_set_attribute(attribute:"plugin_publication_date", value:"2013/08/01");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:apache:openoffice");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Windows");
script_copyright(english:"This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("openoffice_installed.nasl");
script_require_keys("SMB/OpenOffice/Build");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
build = get_kb_item_or_exit("SMB/OpenOffice/Build");
path = get_kb_item("SMB/OpenOffice/Path");
version_ui = get_kb_item("SMB/OpenOffice/Version_UI");
matches = eregmatch(string:build, pattern:"([0-9]+[a-z][0-9]+)\(Build:([0-9]+)\)");
if (isnull(matches)) audit(AUDIT_VER_FAIL, "OpenOffice");
buildid = int(matches[2]);
if (buildid <= 9593)
{
port = get_kb_item("SMB/transport");
if (!port) port = 445;
if (report_verbosity > 0)
{
report =
'\n Path : ' + path +
'\n Installed version : ' + version_ui +
'\n Fixed version : 4.0 (400m3 / build 9702)' +
'\n';
security_warning(port:port, extra:report);
}
else security_warning(port);
exit(0);
}
else audit(AUDIT_INST_PATH_NOT_VULN, "OpenOffice", version_ui, path);
| Vendor | Product | Version | CPE |
|---|---|---|---|
| apache | openoffice | cpe:/a:apache:openoffice |
Related
securityvulns
securityvulns
Apache OpenOffice security vulnerabilities
2013-07-29 00:00:00
CVE-2013-2189: OpenOffice DOC Memory Corruption Vulnerability
2013-07-29 00:00:00
CVE-2013-4156: OpenOffice DOCM Memory Corruption Vulnerability
2013-07-29 00:00:00
debiancve
debiancve
CVE-2013-2189
2022-10-03 16:14:59
CVE-2013-4156
2022-10-03 16:14:57
prion
prion
Memory corruption
2013-07-31 13:20:00
Memory corruption
2013-07-31 13:20:00
seebug
seebug
Apache OpenOffice 文档内存破坏漏洞(CVE-2013-2189)
2013-07-30 00:00:00
Apache OpenOffice DOCM内存破坏漏洞(CVE-2013-4156)
2013-07-30 00:00:00
cvelist
cvelist
CVE-2013-2189
2022-10-03 16:14:59
CVE-2013-4156
2022-10-03 16:14:57
nvd
nvd
CVE-2013-2189
2013-07-31 13:20:25
CVE-2013-4156
2013-07-31 13:20:28
cve
cve
CVE-2013-2189
2022-10-03 16:14:59
CVE-2013-4156
2022-10-03 16:14:57
ubuntucve
ubuntucve
CVE-2013-2189
2013-07-31 00:00:00
CVE-2013-4156
2013-07-31 00:00:00
kaspersky
kaspersky
KLA10243 DoS vulnerability in LibreOffice
2013-07-31 00:00:00
nessus
nessus
LibreOffice < 3.6.7 / 4.0.4 / 4.1.0 .docm Import DoS (Mac OS X)
2014-04-04 00:00:00
LibreOffice < 3.6.7 / 4.0.4 / 4.1.0 .docm Import DoS
2014-04-04 00:00:00
openSUSE Security Update : LibreOffice (openSUSE-SU-2014:1126-1)
2014-09-16 00:00:00
openvas
openvas
SUSE: Security Advisory for LibreOffice (SUSE-SU-2014:1116-1)
2015-10-16 00:00:00
openSUSE: Security Advisory for LibreOffice (openSUSE-SU-2014:1126-1)
2014-09-16 00:00:00
suse
suse
LibreOffice: two security fixes (important)
2014-09-15 09:04:13
Security update for LibreOffice (important)
2014-09-11 15:04:17
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
59.1%
Related for OPENOFFICE_40.NASL