Language

The Free and Open Productivity Suite
Released: Apache OpenOffice 4.1.15

CVE-2015-5214

Apache OpenOffice Advisory

CVE-2015-5214: .DOC BOOKMARKS VULNERABILITY

Fixed in Apache OpenOffice 4.1.2

Title: Memory Corrruption Vulnerability (DOC Bookmarks)

Version 1.0
Announced November 4, 2015

A crafted Microsoft Word DOC can contain invalid bookmark positions leading to memory corruption when the document is loaded or bookmarks are manipulated. The defect allows an attacker to cause denial of service (memory corruption and application crash) and possible execution of arbitrary code.

Severity: Medium

There are no known exploits of this vulnerabilty.
A proof-of-concept demonstration exists.

Vendor: The Apache Software Foundation

Versions Affected

All Apache OpenOffice versions 4.1.1 and older are affected.
OpenOffice.org versions are also affected.

Mitigation

Apache OpenOffice users are urged to download and install Apache OpenOffice version 4.1.2 or later. The defect is over-ridden in 4.1.2.

Precautions

Users who do not upgrade to Apache OpenOffice 4.1.2 should be careful of .DOC files from unknown or unreliable sources. A Microsoft Word 97-2003 DOC format file can be checked by opening with software, such as Microsoft Office Word or Word Online. The documents may be rejected as corrupted or extraordinary employment of bookmarks may be observable.

Further Information

For additional information and assistance, consult the Apache OpenOffice Community Forums or make requests to the users@openoffice.apache.org public mailing list.

The latest information on Apache OpenOffice security bulletins can be found at the Bulletin Archive page.

Credits

The discoverer of this vulnerability wishes to remain anonymous.


Security Home -> Bulletin -> CVE-2015-5214

Apache Software Foundation

Copyright & License | Privacy | Contact Us | Donate | Thanks

Apache, OpenOffice, OpenOffice.org and the seagull logo are registered trademarks of The Apache Software Foundation. The Apache feather logo is a trademark of The Apache Software Foundation. Other names appearing on the site may be trademarks of their respective owners.