Synology-SA-17:26 Office

Publish Time: 2017-08-11 00:00:00 UTC+8

Last Updated: 2017-08-11 17:53:00 UTC+8

Severity
Critical
Status
Resolved

Abstract

CVE-2017-11150 is found in Office that allows remote authenticated attackers to execute arbitrary command through uploading a crafted file on the vulnerable NAS.

Severity

Critical

CVSS v3 Base Score: 8.8

Affected

  • Products
    • Office 2.2.0-1502 and 2.2.1-1506
  • Models
    • All Synology NAS models

Description

Command injection vulnerability in Document.php in Synology Office 2.2.0-1502 and 2.2.1-1506 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the crafted file name of RTF documents.

Mitigation

Install Document Viewer to replace the vulnerable feature.

  1. Go to DSM > Package Center and select All.
  2. Find Document Viewer and click Install button.

Update Availability

To fix the security issues, please go to DSM > Package Center and install the latest version of Office.