|Category:||Debian Local Security Checks|
|Title:||Debian Security Advisory DSA 1661-1 (openoffice.org)|
|Summary:||Debian Security Advisory DSA 1661-1 (openoffice.org)|
The remote host is missing an update to openoffice.org
announced via advisory DSA 1661-1.
Several vulnerabilities have been discovered in the OpenOffice.org
The SureRun Security team discovered a bug in the WMF file parser
that can be triggered by manipulated WMF files and can lead to
heap overflows and arbitrary code execution.
An anonymous researcher working with the iDefense discovered a bug
in the EMF file parser that can be triggered by manipulated EMF
files and can lead to heap overflows and arbitrary code execution.
For the stable distribution (etch) these problems have been fixed in
For the unstable distribution (sid) these problems have been fixed in
For the experimental distribution these problems have been fixed in
We recommend that you upgrade your OpenOffice.org package.
Common Vulnerability Exposure (CVE) ID: CVE-2008-2237|
Debian Security Information: DSA-1661 (Google Search)
SuSE Security Announcement: SUSE-SR:2008:026 (Google Search)
BugTraq ID: 31962
XForce ISS Database: openoffice-wmf-bo(46165)
Common Vulnerability Exposure (CVE) ID: CVE-2008-2238
XForce ISS Database: openoffice-emf-file-bo(46166)
|Copyright||Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com|
|This is only one of 58962 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.