PT-2014-5402 · Openoffice.Org+4 · Openoffice.Org+5

Publicado

2014-08-26

·

Atualizado

2024-06-15

·

CVE-2014-3575

CVSS v2.0

4.3

Média

VetorAV:N/AC:M/Au:N/C:P/I:N/A:N
Name of the Vulnerable Software and Affected Versions Apache OpenOffice versions prior to 4.1.1 OpenOffice.org (OOo) versions prior to 4.1.1
Description The issue concerns the OLE preview generation, which might allow remote attackers to embed arbitrary data into documents via crafted OLE objects.
Recommendations For Apache OpenOffice versions prior to 4.1.1, update to version 4.1.1 or later. For OpenOffice.org (OOo) versions prior to 4.1.1, update to version 4.1.1 or later.

Correção

Information Disclosure

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-200

Identificadores relacionados

CESA-2015_0377
CVE-2014-3575
MGASA-2014-0446
MGASA-2014-0447
MGASA-2015-0022
OPENSUSE-SU-2014_1126-1
OPENSUSE-SU-2024:10006-1
RHSA-2015:0377
RHSA-2015_0377
USN-2400-1

Produtos afetados

Apache Openoffice
Centos
Openoffice
Openoffice.Org
Red Hat
Suse