Test ID:	1.3.6.1.4.1.25623.1.0.800167
Category:	Buffer overflow
Title:	OpenOffice Multiple Remote Code Execution Vulnerabilities - Feb10
Summary:	Check for the version of OpenOffice
Description:	Overview: This host has OpenOffice running which is prone to multiple remote code execution vulnerabilities. Vulnerability Insight: - GIF Files in GIFLZWDecompressor:: GIFLZWDecompressor function in filter.vcl/lgif/decode.cxx leading to heap overflow. - XPM files in XPMReader::ReadXPM function in filter.vcl/ixpm/svt_xpmread.cxx leading to an integer overflow. - Microsoft Word document in filter/ww8/ww8par2.cxx leading to application crash or execute arbitrary code via crafted sprmTSetBrc table property in a Word document. Impact: Successful exploitation lets the attackers to cause a denial of service or execute arbitrary code. Impact Level: Application/System Affected Software/OS: OpenOffice.org versions prior to 3.2 Fix: Upgrade to OpenOffice.org version 3.2 or later, http://download.openoffice.org/index.html References: http://secunia.com/advisories/38568 http://xforce.iss.net/xforce/xfdb/56236 http://xforce.iss.net/xforce/xfdb/56238 http://xforce.iss.net/xforce/xfdb/56240 http://xforce.iss.net/xforce/xfdb/56241 http://www.vupen.com/english/advisories/2010/0366
Cross-Ref:	BugTraq ID: 38218 Common Vulnerability Exposure (CVE) ID: CVE-2009-2949 Debian Security Information: DSA-1995 (Google Search) http://www.debian.org/security/2010/dsa-1995 http://www.mandriva.com/security/advisories?name=MDVSA-2010:221 http://www.redhat.com/support/errata/RHSA-2010-0101.html SuSE Security Announcement: SUSE-SA:2010:017 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00005.html http://www.ubuntu.com/usn/USN-903-1 Cert/CC Advisory: TA10-287A http://www.us-cert.gov/cas/techalerts/TA10-287A.html http://www.securityfocus.com/bid/38218 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10176 http://securitytracker.com/id?1023591 http://secunia.com/advisories/38567 http://secunia.com/advisories/38568 http://secunia.com/advisories/38695 http://secunia.com/advisories/38921 http://www.vupen.com/english/advisories/2010/0366 http://www.vupen.com/english/advisories/2010/0635 http://www.vupen.com/english/advisories/2010/2905 XForce ISS Database: openoffice-xpm-bo(56236) http://xforce.iss.net/xforce/xfdb/56236 Common Vulnerability Exposure (CVE) ID: CVE-2009-2950 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11050 XForce ISS Database: openoffice-gif-bo(56238) http://xforce.iss.net/xforce/xfdb/56238 Common Vulnerability Exposure (CVE) ID: CVE-2009-3301 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10423 XForce ISS Database: openoffice-word-sprmtdeftable-bo(56240) http://xforce.iss.net/xforce/xfdb/56240 Common Vulnerability Exposure (CVE) ID: CVE-2009-3302 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10022 XForce ISS Database: openoffice-word-sprmtsetbrc-bo(56241) http://xforce.iss.net/xforce/xfdb/56241
Copyright	Copyright (C) 2010 Greenbone Networks GmbH

This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: