Kusagadzikana (CVE-2021-33035) kwaonekwa muApache OpenOffice hofisi suite inobvumira kodhi kuuraya kana uchivhura faira rakagadzirwa muDBF fomati. Muongorori akawana dambudziko akanyevera nezve kugadzira kushandiswa kwekushanda kweWindows platform. Kugadziriswa kwekusagadzikana kuri kuwanikwa chete muchimiro chechigamba mune repository yeprojekiti, iyo yakaverengerwa muyedzo yekuvaka yeOpenOffice 4.1.11. Iko hakuna zvigadziriso zvebazi rakagadzikana parizvino.
Dambudziko rinokonzerwa neOpenOffice ichitsamira pamundaUrefu uye mundaType kukosha mumusoro wemafaira eDBF kugovera ndangariro, pasina kutarisa kuti iyo chaiyo data mhando muminda inowirirana. Kuti uite kurwisa, unogona kutsanangura mhando INTEGER mundimaType kukosha, asi isa data hombe uye tsanangura mundaUrefu kukosha kusingaenderane nehukuru hwe data neiyo INTEGER mhando, inotungamira kumuswe we data. kubva panzvimbo ichinyorwa kupfuura buffer yakagoverwa. Nekuda kweiyo inodzorwa buffer kufashukira, muongorori akakwanisa kutsanangura zvakare chinongedzo chekudzoka kubva pabasa uye, achishandisa kudzoka-yakatarisana programming matekiniki (ROP - Return-Oriented Programming), kuzadzisa kuitiswa kwekodhi yake.
Paunenge uchishandisa iyo ROP tekinoroji, anorwisa haaedze kuisa kodhi yake mundangariro, asi anoshanda pane zvidimbu zvemichina mirairo yatovepo mumaraibhurari akaremerwa, ichipera nekuraira kudzoka kwekudzora (semutemo, aya ndiwo magumo emabasa eraibhurari) . Basa rekushandisa rinouya pasi pakuvaka ketani yemafoni kune akafanana mabhuroko ("magajeti") kuti uwane iyo inodiwa kushanda. Magajeti akashandiswa muOpenOffice exploit aive kodhi kubva kuraibhurari yeLibxml2 inoshandiswa muOpenOffice, iyo, kusiyana neOpenOffice pachayo, yakagadzirwa pasina nzira dzekudzivirira dzeDEP (Data Execution Prevention) uye ASLR (Kero Space Layout Randomization).
Vagadziri veOpenOffice vakaziviswa nezvenyaya iyi muna Chivabvu 4, mushure mezvo kuburitswa pachena kweveruzhinji nezvekusagadzikana kwakarongwa muna Nyamavhuvhu 30. Sezvo kuvandudzwa kwebazi rakagadzikana kusina kupera nezuva rakarongwa, mutsvakurudzi akamisa kubudiswa kwemashoko kusvika munaSeptember 18, asi vagadziri veOpenOffice havana kukwanisa kugadzira kusunungurwa 4.1.11 nemusi uyu. Izvo zvakakosha kuti panguva yekutsvagisa kumwe chete, kusagadzikana kwakafanana kwakaonekwa muDBF fomati yekutsigira kodhi muMicrosoft Office Access (CVE-2021-38646), izvo zvinozoburitswa gare gare. Hapana matambudziko akawanikwa muLibreOffice.
Source: opennet.ru