Debian Security Advisory DSA 1661-1 (openoffice.org)
Information
Severity
Severity
Family
Family
CVSSv2 Base
CVSSv2 Base
CVSSv2 Vector
CVSSv2 Vector
Solution Type
Solution Type
Created
Created
Modified
Modified
Summary
The remote host is missing an update to openoffice.org announced via advisory DSA 1661-1.
Insight
Insight
Several vulnerabilities have been discovered in the OpenOffice.org office suite: CVE-2008-2237 The SureRun Security team discovered a bug in the WMF file parser that can be triggered by manipulated WMF files and can lead to heap overflows and arbitrary code execution. CVE-2008-2238 An anonymous researcher working with the iDefense discovered a bug in the EMF file parser that can be triggered by manipulated EMF files and can lead to heap overflows and arbitrary code execution. For the stable distribution (etch) these problems have been fixed in version 2.0.4.dfsg.2-7etch6. For the unstable distribution (sid) these problems have been fixed in version 2.4.1-12. For the experimental distribution these problems have been fixed in version 3.0.0~rc3-1. We recommend that you upgrade your OpenOffice.org package.
Solution
Solution
https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201661-1
Common Vulnerabilities and Exposures (CVE)
Scan your vulnerabilities for free. Start using Mageni today.
Mageni can help you to find, assess and manage your vulnerabilities.
Get Started for Free