![]() An attacker can craft an OBD containing a 'database/script' file with a SCRIPT command Links is not requested when activated, such links could therefore result in arbitrary In the affected versions of Apache OpenOffice, approval for certain The execution of such links must be subject Links can be activated byĬlicks, or by automatic document events. Several URI Schemes are defined for this purpose. Apache OpenOffice documents can contain links that call internal macros with arbitraryĪrguments. Stated in the vendor advisories and release notes. It is, therefore, affected by multiple vulnerabilities as "The version of Apache OpenOffice installed on the remote host is a Script_set_attribute(attribute:"description", value: "The remote Windows host has an application installed that is affected Script_set_attribute(attribute:"synopsis", value: Script_name(english:"Apache OpenOffice < 4.1.15 Multiple Vulnerabilities") Script_set_attribute(attribute:"plugin_modification_date", value:"9") Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number. In Apache OpenOffice and LibreOffice embedded content will be opened automatically without that a warning is shown. ![]() (CVE-2023-47804)Īn attacker can craft an OBD containing a ‘database/script’ file with a SCRIPT command where the contents of the file could be written to a new file whose location was determined by the attacker. In the affected versions of Apache OpenOffice, approval for certain links is not requested when activated, such links could therefore result in arbitrary script execution. ![]() The execution of such links must be subject to user approval. Links can be activated by clicks, or by automatic document events. It is, therefore, affected by multiple vulnerabilities as stated in the vendor advisories and release notes.Īpache OpenOffice documents can contain links that call internal macros with arbitrary arguments. ![]() The version of Apache OpenOffice installed on the remote host is a version prior to 4.1.15. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |