According to its self-reported version, the LibreOffice application running on the remote host is prior to 6.2.6.
そのため、以下の複数の脆弱性の影響を受けます。
  - Protection that was added to mitigate CVE-2019-9848 which prevents LibreLogo from being called from a document event handler. However, insufficient validation of URL encoded characters could allow an attacker to bypass these protections and trigger LibreLogo from script event handlers. (CVE-2019-9850)

  - It is possible for documents to specify that pre-installed scripts be executed on global script events like document-open, etc. (CVE-2019-9851)

  - A feature of this application is that documents can make use of pre-installed macros that can be executed on various script events, the macros are supposed to only be able to access scripts in share/Scripts/python and user/Scripts/python sub-directories of the applications install. However, due to not properly sanitizing URL encoded characters this can be bypassed to allow execution of scripts in other directories. (CVE-2019-9852) Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

検出

LibreOffice < 6.2.6/6.3の入力検証（Windows）

critical Nessus プラグイン ID 133474

バージョン 1.3