Detections
Analytics

Apache OpenOffice < 4.1.13 Multiple Vulnerabilities

high Nessus Plugin ID 164180

Language:

Synopsis

The remote Windows host has an application installed that is affected by an arbitrary code execution vulnerability.

Description

The version of Apache OpenOffice installed on the remote host is a version prior to 4.1.13. It is, therefore, affected by multiple vulnerabilities:

 - Apache OpenOffice supports the storage of passwords for web connections in the user's configuration database. The stored passwords are encrypted with a single master key provided by the user. A flaw in OpenOffice existed where the required initialization vector for encryption was always the same which weakens the security of the encryption making them vulnerable if an attacker has access to the user's configuration data. (CVE-2022-37400)

 - A flaw in OpenOffice existed where master key was poorly encoded resulting in weakening its entropy from 128 to 43 bits making the stored passwords vulnerable to a brute force attack if an attacker has access to the users stored config. (CVE-2022-37401)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version

Solution

Upgrade to Apache OpenOffice version 4.1.13 or later.

See Also

http://www.nessus.org/u?f5c15448

http://www.nessus.org/u?b62874d1

http://www.nessus.org/u?b3b3105a

Plugin Details

Severity: High

ID: 164180

File Name: openoffice_4113.nasl

Version: 1.6

Type: local

Agent: windows

Family: Windows

Published: 8/17/2022

Updated: 10/25/2023

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: High

Base Score: 9

Temporal Score: 6.7

Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C

CVSS Score Source: CVE-2022-37401

CVSS v3

Risk Factor: High

Base Score: 8.8

Temporal Score: 7.7

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:apache:openoffice

Required KB Items: installed_sw/OpenOffice

Exploit Ease: No known exploits are available

Patch Publication Date: 8/15/2022

Vulnerability Publication Date: 8/15/2022

Reference Information

CVE: CVE-2022-37400, CVE-2022-37401

IAVA: 2022-A-0331-S