FreeBSD Local Security Checks : openoffice -- document disclosure

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.52395

Kategorie: FreeBSD Local Security Checks

Titel: openoffice -- document disclosure

Zusammenfassung: The remote host is missing an update to the system; as announced in the referenced advisory.

Beschreibung: Summary:
The remote host is missing an update to the system
as announced in the referenced advisory.

Vulnerability Insight:
The following packages are affected:

openoffice, ar-openoffice, ca-openoffice, cs-openoffice, de-openoffice, dk-openoffice
el-openoffice, es-openoffice, et-openoffice, fi-openoffice, fr-openoffice, gr-openoffice,
hu-openoffice, it-openoffice, ja-openoffice, ko-openoffice, nl-openoffice, pl-openoffice,
pt-openoffice, pt_BR-openoffice, ru-openoffice, se-openoffice, sk-openoffice, sl-openoffice-SI,
tr-openoffice, zh-openoffice-CN, zh-openoffice-TW

CVE-2004-0752
OpenOffice (OOo) 1.1.2 creates predictable directory names with
insecure permissions during startup, which may allow local users to
read or list files of other users.

Solution:
Update your system with the appropriate patches or
software upgrades.

CVSS Score:
2.1

CVSS Vector:
AV:L/AC:L/Au:N/C:P/I:N/A:N

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2004-0752
BugTraq ID: 11151
http://www.securityfocus.com/bid/11151
Bugtraq: 20040910 OpenOffice World-Readable Temporary Files Disclose Files to Local Users (Google Search)
http://marc.info/?l=bugtraq&m=109483308421566&w=2
http://www.osvdb.org/9804
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10294
http://www.redhat.com/support/errata/RHSA-2004-446.html
http://securitytracker.com/id?1011205
http://secunia.com/advisories/12302/
http://secunia.com/advisories/12546/
http://secunia.com/advisories/12668/
http://secunia.com/advisories/12914/
http://secunia.com/advisories/12932/
XForce ISS Database: openofficeorg-tmpfile-insecure-permissions(17312)
https://exchange.xforce.ibmcloud.com/vulnerabilities/17312

Copyright Copyright (C) 2008 E-Soft Inc.

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.52395
Kategorie:	FreeBSD Local Security Checks
Titel:	openoffice -- document disclosure
Zusammenfassung:	The remote host is missing an update to the system; as announced in the referenced advisory.
Beschreibung:	Summary: The remote host is missing an update to the system as announced in the referenced advisory. Vulnerability Insight: The following packages are affected: openoffice, ar-openoffice, ca-openoffice, cs-openoffice, de-openoffice, dk-openoffice el-openoffice, es-openoffice, et-openoffice, fi-openoffice, fr-openoffice, gr-openoffice, hu-openoffice, it-openoffice, ja-openoffice, ko-openoffice, nl-openoffice, pl-openoffice, pt-openoffice, pt_BR-openoffice, ru-openoffice, se-openoffice, sk-openoffice, sl-openoffice-SI, tr-openoffice, zh-openoffice-CN, zh-openoffice-TW CVE-2004-0752 OpenOffice (OOo) 1.1.2 creates predictable directory names with insecure permissions during startup, which may allow local users to read or list files of other users. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 2.1 CVSS Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2004-0752 BugTraq ID: 11151 http://www.securityfocus.com/bid/11151 Bugtraq: 20040910 OpenOffice World-Readable Temporary Files Disclose Files to Local Users (Google Search) http://marc.info/?l=bugtraq&m=109483308421566&w=2 http://www.osvdb.org/9804 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10294 http://www.redhat.com/support/errata/RHSA-2004-446.html http://securitytracker.com/id?1011205 http://secunia.com/advisories/12302/ http://secunia.com/advisories/12546/ http://secunia.com/advisories/12668/ http://secunia.com/advisories/12914/ http://secunia.com/advisories/12932/ XForce ISS Database: openofficeorg-tmpfile-insecure-permissions(17312) https://exchange.xforce.ibmcloud.com/vulnerabilities/17312
Copyright	Copyright (C) 2008 E-Soft Inc.