 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.55478 |
| Category: | Ubuntu Local Security Checks |
| Title: | Ubuntu USN-188-1 (abiword) |
| Summary: | NOSUMMARY |
| Description: | Description: The remote host is missing an update to abiword announced via advisory USN-188-1. A security issue affects the following Ubuntu releases: Ubuntu 4.10 (Warty Warthog) Ubuntu 5.04 (Hoary Hedgehog) The following packages are affected: abiword abiword-gnome Chris Evans discovered a buffer overflow in the RTF import module of AbiWord. By tricking a user into opening an RTF file with specially crafted long identifiers, an attacker could exploit this to execute arbitrary code with the privileges of the AbiWord user. Solution: The problem can be corrected by upgrading the affected package to version 2.0.7+cvs.2004.05.05-1ubuntu3.2 (for Ubuntu 4.10), or 2.2.2-1ubuntu2.1 (for Ubuntu 5.04). After a standard system upgrade you need to restart AbiWord to effect the necessary changes. http://www.securityspace.com/smysecure/catid.html?in=USN-188-1 Risk factor : High CVSS Score: 7.5 |
| Cross-Ref: |
BugTraq ID: 14971 Common Vulnerability Exposure (CVE) ID: CVE-2005-2964 http://www.securityfocus.com/bid/14971 Debian Security Information: DSA-894 (Google Search) http://www.debian.org/security/2005/dsa-894 http://www.gentoo.org/security/en/glsa/glsa-200509-20.xml http://www.gentoo.org/security/en/glsa/glsa-200510-04.xml http://www.osvdb.org/19717 http://securitytracker.com/id?1014982 http://secunia.com/advisories/16982 http://secunia.com/advisories/16990 http://secunia.com/advisories/17012 http://secunia.com/advisories/17052 http://secunia.com/advisories/17070 http://secunia.com/advisories/17215 http://secunia.com/advisories/17551 SuSE Security Announcement: SUSE-SR:2005:023 (Google Search) http://www.novell.com/linux/security/advisories/2005_23_sr.html http://www.ubuntu.com/usn/usn-188-1 XForce ISS Database: abiword-rtf-importer-bo(22454) https://exchange.xforce.ibmcloud.com/vulnerabilities/22454 |
| Copyright | Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com |
| This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |