CVE-2014-3693

EUVD-2014-3639
Use-after-free vulnerability in the socket manager of Impress Remote in LibreOffice 4.x before 4.2.7 and 4.3.x before 4.3.3 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request to TCP port 1599.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 88%
Affected Products (NVD)
VendorProductVersion
redhatenterprise_linux_desktop
7.0
redhatenterprise_linux_server
7.0
redhatenterprise_linux_workstation
7.0
canonicalubuntu_linux
14.04
canonicalubuntu_linux
14.10
libreofficelibreoffice
4.0.0
libreofficelibreoffice
4.0.1
libreofficelibreoffice
4.0.2
libreofficelibreoffice
4.0.3
libreofficelibreoffice
4.0.3.3
libreofficelibreoffice
4.0.4.2
libreofficelibreoffice
4.1.0
libreofficelibreoffice
4.1.1
libreofficelibreoffice
4.1.2
libreofficelibreoffice
4.1.3
libreofficelibreoffice
4.1.4
libreofficelibreoffice
4.2.0
libreofficelibreoffice
4.2.1
libreofficelibreoffice
4.2.2
libreofficelibreoffice
4.2.3
libreofficelibreoffice
4.2.4
libreofficelibreoffice
4.2.5
libreofficelibreoffice
4.2.6
libreofficelibreoffice
4.3.0
libreofficelibreoffice
4.3.1
libreofficelibreoffice
4.3.2
opensuseopensuse
13.1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
libreoffice
bookworm
4:7.4.7-1+deb12u4
fixed
bookworm (security)
4:7.4.7-1+deb12u5
fixed
bullseye
1:7.0.4-4+deb11u10
fixed
bullseye (security)
1:7.0.4-4+deb11u11
fixed
sid
4:24.8.2-2
fixed
trixie
4:24.8.2-2
fixed
wheezy
not-affected
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
libreoffice
lucid
dne
precise
not-affected
trusty
Fixed 1:4.2.7-0ubuntu1
released
utopic
Fixed 1:4.3.3-0ubuntu1
released
openoffice.org
lucid
ignored
precise
not-affected
trusty
dne
utopic
dne
References
http://lists.opensuse.org/opensuse-updates/2014-11/msg00049.html
http://rhn.redhat.com/errata/RHSA-2015-0377.html
http://secunia.com/advisories/62111
http://secunia.com/advisories/62132
http://secunia.com/advisories/62396
http://www.securityfocus.com/bid/71351
http://www.ubuntu.com/usn/USN-2398-1
https://security.gentoo.org/glsa/201603-05
https://www.libreoffice.org/about-us/security/advisories/CVE-2014-3693/
http://lists.opensuse.org/opensuse-updates/2014-11/msg00049.html
http://rhn.redhat.com/errata/RHSA-2015-0377.html
http://secunia.com/advisories/62111
http://secunia.com/advisories/62132
http://secunia.com/advisories/62396
http://www.securityfocus.com/bid/71351
http://www.ubuntu.com/usn/USN-2398-1
https://security.gentoo.org/glsa/201603-05
https://www.libreoffice.org/about-us/security/advisories/CVE-2014-3693/