Red Hat Local Security Checks : RedHat Security Advisory RHSA-2005:375

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.52108

Categoría: Red Hat Local Security Checks

Título: RedHat Security Advisory RHSA-2005:375

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing updates announced in
advisory RHSA-2005:375.

OpenOffice.org is an office productivity suite that includes desktop
applications such as a word processor, spreadsheet, presentation manager,
formula editor, and drawing program.

A heap based buffer overflow bug was found in the OpenOffice.org DOC file
processor. An attacker could create a carefully crafted DOC file in such a
way that it could cause OpenOffice.org to execute arbitrary code when the
file was opened by a victim. The Common Vulnerabilities and Exposures
project (cve.mitre.org) has assigned the name CVE-2005-0941 to this issue.

All users of OpenOffice.org are advised to upgrade to these updated
packages, which contain backported fixes for these issues.

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2005-375.html
http://www.openoffice.org/issues/show_bug.cgi?id=46388

Risk factor : High

CVSS Score:
5.1

Referencia Cruzada: BugTraq ID: 13092
Common Vulnerability Exposure (CVE) ID: CVE-2005-0941
http://www.securityfocus.com/bid/13092
Bugtraq: 20050412 OpenOffice DOC document Heap Overflow (Google Search)
http://www.securityfocus.com/archive/1/395516
http://www.gentoo.org/security/en/glsa/glsa-200504-13.xml
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9106
http://www.redhat.com/support/errata/RHSA-2005-375.html
http://secunia.com/advisories/17027
SuSE Security Announcement: SUSE-SR:2005:021 (Google Search)
http://www.novell.com/linux/security/advisories/2005_21_sr.html

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.52108
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2005:375
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2005:375. OpenOffice.org is an office productivity suite that includes desktop applications such as a word processor, spreadsheet, presentation manager, formula editor, and drawing program. A heap based buffer overflow bug was found in the OpenOffice.org DOC file processor. An attacker could create a carefully crafted DOC file in such a way that it could cause OpenOffice.org to execute arbitrary code when the file was opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2005-0941 to this issue. All users of OpenOffice.org are advised to upgrade to these updated packages, which contain backported fixes for these issues. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2005-375.html http://www.openoffice.org/issues/show_bug.cgi?id=46388 Risk factor : High CVSS Score: 5.1
Referencia Cruzada:	BugTraq ID: 13092 Common Vulnerability Exposure (CVE) ID: CVE-2005-0941 http://www.securityfocus.com/bid/13092 Bugtraq: 20050412 OpenOffice DOC document Heap Overflow (Google Search) http://www.securityfocus.com/archive/1/395516 http://www.gentoo.org/security/en/glsa/glsa-200504-13.xml https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9106 http://www.redhat.com/support/errata/RHSA-2005-375.html http://secunia.com/advisories/17027 SuSE Security Announcement: SUSE-SR:2005:021 (Google Search) http://www.novell.com/linux/security/advisories/2005_21_sr.html
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com