CVE-2014-3693

Use-after-free vulnerability in the socket manager of Impress Remote in LibreOffice 4.x before 4.2.7 and 4.3.x before 4.3.3 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request to TCP port 1599.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 89%
VendorProductVersion
redhatenterprise_linux_desktop
7.0
redhatenterprise_linux_server
7.0
redhatenterprise_linux_workstation
7.0
canonicalubuntu_linux
14.04
canonicalubuntu_linux
14.10
libreofficelibreoffice
4.0.0
libreofficelibreoffice
4.0.1
libreofficelibreoffice
4.0.2
libreofficelibreoffice
4.0.3
libreofficelibreoffice
4.0.3.3
libreofficelibreoffice
4.0.4.2
libreofficelibreoffice
4.1.0
libreofficelibreoffice
4.1.1
libreofficelibreoffice
4.1.2
libreofficelibreoffice
4.1.3
libreofficelibreoffice
4.1.4
libreofficelibreoffice
4.2.0
libreofficelibreoffice
4.2.1
libreofficelibreoffice
4.2.2
libreofficelibreoffice
4.2.3
libreofficelibreoffice
4.2.4
libreofficelibreoffice
4.2.5
libreofficelibreoffice
4.2.6
libreofficelibreoffice
4.3.0
libreofficelibreoffice
4.3.1
libreofficelibreoffice
4.3.2
opensuseopensuse
13.1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
libreoffice
bullseye
1:7.0.4-4+deb11u10
fixed
wheezy
not-affected
bullseye (security)
1:7.0.4-4+deb11u11
fixed
bookworm
4:7.4.7-1+deb12u4
fixed
bookworm (security)
4:7.4.7-1+deb12u5
fixed
sid
4:24.8.2-2
fixed
trixie
4:24.8.2-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
libreoffice
utopic
Fixed 1:4.3.3-0ubuntu1
released
trusty
Fixed 1:4.2.7-0ubuntu1
released
precise
not-affected
lucid
dne
openoffice.org
utopic
dne
trusty
dne
precise
not-affected
lucid
ignored
References
http://lists.opensuse.org/opensuse-updates/2014-11/msg00049.html
http://rhn.redhat.com/errata/RHSA-2015-0377.html
http://secunia.com/advisories/62111
http://secunia.com/advisories/62132
http://secunia.com/advisories/62396
http://www.securityfocus.com/bid/71351
http://www.ubuntu.com/usn/USN-2398-1
https://security.gentoo.org/glsa/201603-05
https://www.libreoffice.org/about-us/security/advisories/CVE-2014-3693/
http://lists.opensuse.org/opensuse-updates/2014-11/msg00049.html
http://rhn.redhat.com/errata/RHSA-2015-0377.html
http://secunia.com/advisories/62111
http://secunia.com/advisories/62132
http://secunia.com/advisories/62396
http://www.securityfocus.com/bid/71351
http://www.ubuntu.com/usn/USN-2398-1
https://security.gentoo.org/glsa/201603-05
https://www.libreoffice.org/about-us/security/advisories/CVE-2014-3693/