Multiple Vulnerabilities in Apache Open office

Post author:shashikant redekar
Post published:October 21, 2021
Post category:Cyber Security
Post comments:0 Comments

Original Issue Date: October 21, 2021

Severity Rating: MEDIUM

Software Affected

All Apache OpenOffice prior to versions 4.1.10

Overview

Multiple vulnerabilities have been reported in Apache OpenOffice which could be exploited by an attacker to bypass security restrictions, execute arbitrary code and can cause Denial of Service condition on the targeted system.

Description

1. Privilege escalation Vulnerability ( CVE-2021-28129 )

This Vulnerability exists in Apache OpenOffice due to DEB package installer uses USERID and GROUPID of 500 instead of root.

An attacker could exploit this vulnerability by sending a specially crafted attack to the files owned by that user or group if they exist.

Successful exploitation of this vulnerability could allow an attacker to gain elevated privileges on the targeted system.

2. Buffer overflow Vulnerability ( CVE-2021-33035 )

This Vulnerability exists in Apache OpenOffice due to incorrect check by the dBase database file (DBF) format while reading size of certain data fields. A remote attacker could exploit this vulnerability by persuading victim to open a specially crafted .d bf file.

Successful exploitation of this vulnerability could allow an attacker to overflow a buffer and execute arbitrary code on the targeted system.

3. Denial of service Vulnerability ( CVE-2021-40439 )

This Vulnerability exists in Apache OpenOffice due to “billion laugh” attacks (a type of denial-of-service attack which is aimed at parsers of XML documents). An attacker could exploit this vulnerability by persuading victim to open a specially crafted .xml file.

Successful exploitation of this vulnerability could allow an attacker to cause denial of service condition on the targeted system

4. Other Weak security Vulnerabilities ( CVE-2021-41830 CVE-2021-41832 CVE-2021-41831 )

These vulnerability exists in Apache OpenOffice due to manipulation of signed documents, macros and timestamp from the trusted source. An attacker could exploit these vulnerabilities by persuading victim to open a specially crafted file.

Successful exploitation of these vulnerabilities could allow an attacker to bypass weak security restrictions on the targeted system.

Solution

Upgrade to Apache OpenOffice version 4.1.11:

https://www.openoffice.org/download/

Please Share This Share this content

You Might Also Like

Vulnerability in TP-Link TL-WR841N wireless router

Remote code execution Vulnerability in Cisco routers

Multiple Vulnerabilities in F5 BIG-IP

Leave a Reply Cancel reply

Share this content