Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200504-13 (OpenOffice)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.54915

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200504-13 (OpenOffice)

Resumen: The remote host is missing updates announced in;advisory GLSA 200504-13.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 200504-13.

Vulnerability Insight:
OpenOffice.Org is vulnerable to a heap overflow when processing DOC
documents, which could lead to arbitrary code execution.

Solution:
All OpenOffice.Org users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=app-office/openoffice-1.1.4-r1'

All OpenOffice.Org binary users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose
'>=app-office/openoffice-bin-1.1.4-r1'

All OpenOffice.Org Ximian users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose app-office/openoffice-ximian

Note to PPC users: There is no stable OpenOffice.Org fixed version for the
PPC architecture. Affected users should switch to the latest
OpenOffice.Org Ximian version.

Note to SPARC users: There is no stable OpenOffice.Org fixed version for
the SPARC architecture. Affected users should switch to the latest
OpenOffice.Org Ximian version.

CVSS Score:
5.1

CVSS Vector:
AV:N/AC:H/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2005-0941
BugTraq ID: 13092
http://www.securityfocus.com/bid/13092
Bugtraq: 20050412 OpenOffice DOC document Heap Overflow (Google Search)
http://www.securityfocus.com/archive/1/395516
http://www.gentoo.org/security/en/glsa/glsa-200504-13.xml
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9106
http://www.redhat.com/support/errata/RHSA-2005-375.html
http://secunia.com/advisories/17027
SuSE Security Announcement: SUSE-SR:2005:021 (Google Search)
http://www.novell.com/linux/security/advisories/2005_21_sr.html

Copyright Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.54915
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200504-13 (OpenOffice)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200504-13.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200504-13. Vulnerability Insight: OpenOffice.Org is vulnerable to a heap overflow when processing DOC documents, which could lead to arbitrary code execution. Solution: All OpenOffice.Org users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=app-office/openoffice-1.1.4-r1' All OpenOffice.Org binary users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=app-office/openoffice-bin-1.1.4-r1' All OpenOffice.Org Ximian users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose app-office/openoffice-ximian Note to PPC users: There is no stable OpenOffice.Org fixed version for the PPC architecture. Affected users should switch to the latest OpenOffice.Org Ximian version. Note to SPARC users: There is no stable OpenOffice.Org fixed version for the SPARC architecture. Affected users should switch to the latest OpenOffice.Org Ximian version. CVSS Score: 5.1 CVSS Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2005-0941 BugTraq ID: 13092 http://www.securityfocus.com/bid/13092 Bugtraq: 20050412 OpenOffice DOC document Heap Overflow (Google Search) http://www.securityfocus.com/archive/1/395516 http://www.gentoo.org/security/en/glsa/glsa-200504-13.xml https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9106 http://www.redhat.com/support/errata/RHSA-2005-375.html http://secunia.com/advisories/17027 SuSE Security Announcement: SUSE-SR:2005:021 (Google Search) http://www.novell.com/linux/security/advisories/2005_21_sr.html
Copyright	Copyright (C) 2008 E-Soft Inc.