This script is Copyright (C) 2015-2016 Tenable Network Security, Inc.
The remote host has an application installed that is affected by an
arbitrary code execution vulnerability.
The version of LibreOffice installed on the remote Mac OS X host is
prior to 4.4.6 or 5.x prior to 5.0.1. It is, therefore, affected by a
memory corruption issue in 'filter/ww8/ww8scan.cxx' due to improper
validation of user-supplied input when handling bookmark status
positions. A remote attacker can exploit this, via a specially crafted
document, to cause a denial of service condition or the execution of
Note that Nessus has not attempted to exploit this issue but has
instead relied only on the application's self-reported version number.
See also :
Upgrade to LibreOffice version 4.4.6 (184.108.40.206) / 5.0.1 (220.127.116.11) or
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 7.3
Public Exploit Available : true