PT-2019-4245 · Apache+2 · Openoffice+2

Kurt Seifried

Publicado

2019-12-20

Atualizado

2024-01-09

CVE-2012-5639

CVSS v2.0

7.6

Alta

Vetor

AV:N/AC:H/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions LibreOffice (affected versions not specified) OpenOffice (affected versions not specified)

Description The issue is related to LibreOffice and OpenOffice automatically opening embedded content. This can be exploited by a remote attacker to impact the integrity, confidentiality, and availability of protected information.

Recommendations For LibreOffice, consider disabling the automatic opening of embedded content until a patch is available. For OpenOffice, restrict access to embedded content to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Privilege Management

Exposure of Resource to Wrong Sphere

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-269CWE-668

Identificadores relacionados

BDU:2019-04846

CVE-2012-5639

ECHO-0C5B-B878-D4D7

Produtos afetados

Debian

Libreoffice

Openoffice

PT-2019-4245 · Apache+2 · Openoffice+2

CVE-2012-5639

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 29