Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200410-17 (openoffice)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.54708

Kategorie: Gentoo Local Security Checks

Titel: Gentoo Security Advisory GLSA 200410-17 (openoffice)

Zusammenfassung: The remote host is missing updates announced in;advisory GLSA 200410-17.

Beschreibung: Summary:
The remote host is missing updates announced in
advisory GLSA 200410-17.

Vulnerability Insight:
OpenOffice.org uses insecure temporary files which could allow a malicious
local user to gain knowledge of sensitive information from other users'
documents.

Solution:
All affected OpenOffice.org users should upgrade to the latest version:

# emerge sync

# emerge -pv '>=app-office/openoffice-1.1.3'
# emerge '>=app-office/openoffice-1.1.3'

All affected OpenOffice.org binary users should upgrade to the latest
version:

# emerge sync

# emerge -pv '>=app-office/openoffice-bin-1.1.3'
# emerge '>=app-office/openoffice-bin-1.1.3'

All affected OpenOffice.org Ximian users should upgrade to the latest
version:

# emerge sync

# emerge -pv '>=app-office/openoffice-ximian-1.3.4'
# emerge '>=app-office/openoffice-1.3.4'

CVSS Score:
2.1

CVSS Vector:
AV:L/AC:L/Au:N/C:P/I:N/A:N

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2004-0752
BugTraq ID: 11151
http://www.securityfocus.com/bid/11151
Bugtraq: 20040910 OpenOffice World-Readable Temporary Files Disclose Files to Local Users (Google Search)
http://marc.info/?l=bugtraq&m=109483308421566&w=2
http://www.osvdb.org/9804
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10294
http://www.redhat.com/support/errata/RHSA-2004-446.html
http://securitytracker.com/id?1011205
http://secunia.com/advisories/12302/
http://secunia.com/advisories/12546/
http://secunia.com/advisories/12668/
http://secunia.com/advisories/12914/
http://secunia.com/advisories/12932/
XForce ISS Database: openofficeorg-tmpfile-insecure-permissions(17312)
https://exchange.xforce.ibmcloud.com/vulnerabilities/17312

Copyright Copyright (C) 2008 E-Soft Inc.

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.54708
Kategorie:	Gentoo Local Security Checks
Titel:	Gentoo Security Advisory GLSA 200410-17 (openoffice)
Zusammenfassung:	The remote host is missing updates announced in;advisory GLSA 200410-17.
Beschreibung:	Summary: The remote host is missing updates announced in advisory GLSA 200410-17. Vulnerability Insight: OpenOffice.org uses insecure temporary files which could allow a malicious local user to gain knowledge of sensitive information from other users' documents. Solution: All affected OpenOffice.org users should upgrade to the latest version: # emerge sync # emerge -pv '>=app-office/openoffice-1.1.3' # emerge '>=app-office/openoffice-1.1.3' All affected OpenOffice.org binary users should upgrade to the latest version: # emerge sync # emerge -pv '>=app-office/openoffice-bin-1.1.3' # emerge '>=app-office/openoffice-bin-1.1.3' All affected OpenOffice.org Ximian users should upgrade to the latest version: # emerge sync # emerge -pv '>=app-office/openoffice-ximian-1.3.4' # emerge '>=app-office/openoffice-1.3.4' CVSS Score: 2.1 CVSS Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2004-0752 BugTraq ID: 11151 http://www.securityfocus.com/bid/11151 Bugtraq: 20040910 OpenOffice World-Readable Temporary Files Disclose Files to Local Users (Google Search) http://marc.info/?l=bugtraq&m=109483308421566&w=2 http://www.osvdb.org/9804 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10294 http://www.redhat.com/support/errata/RHSA-2004-446.html http://securitytracker.com/id?1011205 http://secunia.com/advisories/12302/ http://secunia.com/advisories/12546/ http://secunia.com/advisories/12668/ http://secunia.com/advisories/12914/ http://secunia.com/advisories/12932/ XForce ISS Database: openofficeorg-tmpfile-insecure-permissions(17312) https://exchange.xforce.ibmcloud.com/vulnerabilities/17312
Copyright	Copyright (C) 2008 E-Soft Inc.