Ubuthathaka (CVE-2021-33035) ichongiwe kwi-ofisi ye-Apache OpenOffice suite evumela ukuphunyezwa kwekhowudi xa uvula ifayile eyilwe ngokukodwa kwifomathi yeDBF. Umphandi ofumene ingxaki walumkisa malunga nokudala ukuxhaphaza okusebenzayo kwiqonga leWindows. Ukulungiswa komngcipheko kungoku nje kufumaneka kuphela ngohlobo lwepetshi kwindawo yokugcina iprojekthi, equkwe kuvavanyo lolwakhiwo lwe-OpenOffice 4.1.11. Akukho zihlaziyo zesebe elizinzileyo okwangoku.
Ingxaki ibangelwa yi-OpenOffice exhomekeke kwindawo Ubude kunye ne-fieldType amaxabiso kwi-header yeefayile ze-DBF ukunika imemori, ngaphandle kokukhangela ukuba uhlobo lwedatha oluyinyani kwimihlaba luyahambelana. Ukwenza uhlaselo, ungakhankanya uhlobo lwe-INTEGER kwintsimiUhlobo lwexabiso, kodwa beka idatha enkulu kwaye uchaze intsimiUbude bexabiso elingahambelani nobungakanani bedatha enohlobo lwe-INTEGER, oluya kukhokelela kumsila wedatha. ukusuka kumhlaba ubhalwa ngaphaya kwesithinteli esinikiweyo. Njengomphumo wokuphuphuma kwe-buffer elawulwayo, umphandi wakwazi ukuphinda achaze isalathisi sokubuyisela ukusuka kumsebenzi kwaye, usebenzisa iindlela zokuBuyisa i-Return-Oriented Programming (ROP), ukuphumeza ukuphunyezwa kwekhowudi yakhe.
Xa usebenzisa ubuchule be-ROP, umhlaseli akazami ukubeka ikhowudi yakhe kwimemori, kodwa usebenza kwiziqwenga zemiyalelo yomatshini esele ikhona kwiilayibrari ezilayishiweyo, ephela ngomyalelo wokubuyisela ulawulo (njengomthetho, ezi ziphelo zemisebenzi yethala leencwadi) . Umsebenzi we-exploit wehla ekwakhiweni kwekhonkco leefowuni kwiibhloko ezifanayo ("igajethi") ukufumana umsebenzi ofunekayo. Izixhobo zombane ezisetyenziswe kwi-OpenOffice exploit yayiyikhowudi esuka kwithala leencwadi le-libxml2 elisetyenziswa kwi-OpenOffice, ethe, ngokungafaniyo ne-OpenOffice ngokwayo, yaqulunqwa ngaphandle kwe-DEP (UThintelo lokuSebenza kweDatha) kunye ne-ASLR (ULungiso lweSithuba seDilesi ngokuRandomza).
Abaphuhlisi be-OpenOffice bazisiwe ngale ngxaki nge-4 kaMeyi, emva koko ukubhengezwa esidlangalaleni kobuthathaka kwacwangciselwa umhla wama-30 ka-Agasti. Ekubeni uhlaziyo lwesebe elizinzileyo aluzange lugqitywe ngomhla omiselweyo, umphandi wahlehlisa ukuchazwa kweenkcukacha ngoSeptemba 18, kodwa abaphuhlisi be-OpenOffice abazange balawule ukudala ukukhululwa kwe-4.1.11 ngalo mhla. Kuyaphawuleka ukuba ngexesha lophando olufanayo, ubuthathaka obufanayo buchongiwe kwikhowudi yenkxaso yefomathi yeDBF kwiMicrosoft Office Access (CVE-2021-38646), iinkcukacha eziya kuchazwa kamva. Akukho zingxaki zifunyenweyo kwiLibreOffice.
umthombo: opennet.ru