#VU971 Privilege escalation in OpenOffice - CVE-2016-6803
Published: October 13, 2016 / Updated: March 21, 2018
Vulnerability identifier: #VU971
Vulnerability risk: Low
CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2016-6803
CWE-ID: CWE-264
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vulnerable software:
OpenOffice
OpenOffice
Software vendor:
Apache Foundation
Apache Foundation
Description
The vulnerability allows a local user to execute arbitrary code with elevated privileges on the target system.
The weakness is caused by performing of improper operations for files that use a search path containing an unquoted element. Attackers can exploit the vulnerability by tricking the victim to execute arbitrary file downloaded by trojan horse application.
Successful exploitation of the vulnerability results in arbitrary code execution on the vulnerable system that may lead to complete system compromise.
The weakness is caused by performing of improper operations for files that use a search path containing an unquoted element. Attackers can exploit the vulnerability by tricking the victim to execute arbitrary file downloaded by trojan horse application.
Successful exploitation of the vulnerability results in arbitrary code execution on the vulnerable system that may lead to complete system compromise.
Remediation
Update to version 4.1.3.
http://sourceforge.net/projects/openofficeorg.mirror/files/4.1.3/binaries/ru/Apache_OpenOffice_4.1.3...
http://sourceforge.net/projects/openofficeorg.mirror/files/4.1.3/binaries/ru/Apache_OpenOffice_4.1.3...