openoffice-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From orc...@apache.org
Subject svn commit: r1764185 - /openoffice/ooo-site/trunk/content/security/cves/CVE-2016-6804.html
Date Tue, 11 Oct 2016 00:27:39 GMT
Author: orcmid
Date: Tue Oct 11 00:27:38 2016
New Revision: 1764185

URL: http://svn.apache.org/viewvc?rev=1764185&view=rev
Log:
CVE-2016-6804 advisory Version 1 for 2016-10-11 or later web publication

Added:
    openoffice/ooo-site/trunk/content/security/cves/CVE-2016-6804.html   (with props)

Added: openoffice/ooo-site/trunk/content/security/cves/CVE-2016-6804.html
URL: http://svn.apache.org/viewvc/openoffice/ooo-site/trunk/content/security/cves/CVE-2016-6804.html?rev=1764185&view=auto
==============================================================================
--- openoffice/ooo-site/trunk/content/security/cves/CVE-2016-6804.html (added)
+++ openoffice/ooo-site/trunk/content/security/cves/CVE-2016-6804.html [UTF-8] Tue Oct 11
00:27:38 2016
@@ -0,0 +1,146 @@
+<!DOCTYPE html>
+<html>
+    <head>
+        <title>CVE-2016-6804</title>
+        <style type="text/css"></style>
+    </head>
+
+    <body>
+    <!-- These were previously defined as XHTML pages. The current wrapping
+         for the site introduces HTML5 headers and formats. This version is
+         modified to match the wrapping that is done as part of publishing
+         this page and not rely on any particular styling beyond <p>.
+         -->
+
+        <p>
+          <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=2016-6804">
+          CVE-2016-6804</a>
+        </p>
+
+        <p>
+          <a href="http://www.openoffice.org/security/cves/CVE-2016-6804.html">
+          Apache OpenOffice Advisory</a>
+        </p>
+
+        <p>
+          <strong>Windows Installer Execution of Arbitrary Code with 
+              Elevated Privileges
+          </strong>
+        </p>
+
+        <p>
+          <strong>Version 1.0</strong>
+        </p>
+
+        <p>
+          Announced October 11, 2016
+        </p>
+
+        <p>
+          <strong>Description</strong>
+        </p>
+
+        <p>
+          The Apache OpenOffice installer for Winodws contained a defective
+          operation that allows execution of arbitrary code with elevated
+          privileges.
+        </p>
+        <p>The location in which the installer is run may have been 
+            previously poisoned by a file that impersonates a dynamic-link
+            library that the installer depends upon.  The counterfeit is
+            operated instead because of a search path defect in the 
+            installer.  The counterfeit will be operated under the
+            administrative privileges of the OpenOffice installer,
+            compromising the users's PC.
+        </p>
+        
+        <p>
+          <strong>Severity: Medium</strong>
+        </p>
+
+        <p>There are no known exploits of this vulnerabilty.<br />
+          A proof-of-concept demonstration exists.
+        </p>
+
+        <p>
+          <strong>Vendor: The Apache Software Foundation</strong>
+        </p>
+
+        <p>
+          <strong>Versions Affected</strong>
+        </p>
+
+        <p>
+          All Apache OpenOffice versions 4.1.2 and older are affected.<br />
+          OpenOffice.org versions are also affected.
+        </p>
+
+        <p>
+          <strong>Mitigation</strong>
+        </p>
+
+        <p>
+          Install Apache OpenOffice 4.1.3 for the latest maintenance and
+          cumulative security fixes.  Use the Apache OpenOffice 
+          <a href="https://www.openoffice.org/download/">download page</a>.
+        </p>
+
+        <p>
+          <strong>Defenses and Work-Arounds</strong>
+        </p>
+
+        <p>
+          If you are unable to update to 4.1.3, there are other precautions
+          that can be taken.  These precausions are also recommended as protection against
other software that may have the vulnerability.
+          <br /><br />
+          When executing .exe installers, ensure that the installer is in a file folder that
has no other files but the installer .exe file.
+          <br /><br />
+          If an installer proposes a folder to extract the setup files
+          into before the actual install, choose the name of a folder that is not in use.
 Delete such a folder of setup files after the installation completes successfully.  To reinstall
without 
+          downloading again, preserve the installer .exe on private 
+          removable storage.
+        </p>
+        
+        <p>
+           <strong>Further Information</strong>
+        </p>
+        
+        <p>
+          For additional information and assistance, consult the 
+          <a href="https://forum.openoffice.org/">Apache OpenOffice 
+          Community Forums</a>, or make requests to the 
+          <a href="mailto:users@openoffice.apache.org">users@openoffice.apache.org</a>

+          public mailing list. Defects not involving suspected security 
+          vulnerabilities can be reported with a normal issue via 
+          <a href="http://www.openoffice.org/qa/issue_handling/pre_submission.html">Bugzilla</a>.
+        </p>
+
+        <p>
+          The latest information on Apache OpenOffice security bulletins can 
+          be found at the 
+          <a href="http://www.openoffice.org/security/bulletin.html">
+          Bulletin Archive page</a>.
+        </p>
+
+        <p>
+          <strong>Credits</strong>
+        </p>
+
+        <p>
+          The Apache OpenOffice project acknowledges the reporting and
+          analysis for CVE-2016-6804 by Stephen Kanthek and by Himanshu
+          Mehta.
+        </p>
+
+        <hr />
+
+        <p>
+          <a href="http://www.openoffice.org/security/">Security Home</a>
+          -&gt; <a href="http://www.openoffice.org/security/bulletin.html">
+          Bulletin</a>
+          -&gt; <a href="http://www.openoffice.org/security/cves/CVE-2016-1513.html">
+          CVE-2016-1513</a>
+        </p>
+
+    </body>
+</html>

Propchange: openoffice/ooo-site/trunk/content/security/cves/CVE-2016-6804.html
------------------------------------------------------------------------------
    svn:eol-style = native

Propchange: openoffice/ooo-site/trunk/content/security/cves/CVE-2016-6804.html
------------------------------------------------------------------------------
    svn:mime-type = text/html;charset=UTF-8



Mime
View raw message