- Home
- CVEs with nessus.description==Updated+openoffice.org+packages+that+correct+multiple+security+issues+are+now+available+for+Red+Hat+Enterprise+Linux+3%2C+4%2C+and+5.%0A%0AThis+update+has+been+rated+as+having+important+security+impact+by+the+Red+Hat+Security+Response+Team.%0A%0AOpenOffice.org+is+an+office+productivity+suite+that+includes+desktop+applications%2C+such+as+a+word+processor%2C+spreadsheet+application%2C+presentation+manager%2C+formula+editor%2C+and+a+drawing+program.%0A%0AAn+integer+overflow+flaw%2C+leading+to+a+heap-based+buffer+overflow%2C+was+found+in+the+way+OpenOffice.org+parsed+XPM+files.+An+attacker+could+create+a+specially+crafted+document%2C+which+once+opened+by+a+local%2C+unsuspecting+user%2C+could+lead+to+arbitrary+code+execution+with+the+permissions+of+the+user+running+OpenOffice.org.+Note%3A+This+flaw+affects+embedded+XPM+files+in+OpenOffice.org+documents+as+well+as+stand-alone+XPM+files.+%28CVE-2009-2949%29%0A%0AAn+integer+underflow+flaw+and+a+boundary+error+flaw%2C+both+possibly+leading+to+a+heap-based+buffer+overflow%2C+were+found+in+the+way+OpenOffice.org+parsed+certain+records+in+Microsoft+Word+documents.+An+attacker+could+create+a+specially+crafted+Microsoft+Word+document%2C+which+once+opened+by+a+local%2C+unsuspecting+user%2C+could+cause+OpenOffice.org+to+crash+or%2C+potentially%2C+execute+arbitrary+code+with+the+permissions+of+the+user+running+OpenOffice.org.+%28CVE-2009-3301%2C+CVE-2009-3302%29%0A%0AA+heap-based+buffer+overflow+flaw%2C+leading+to+memory+corruption%2C+was+found+in+the+way+OpenOffice.org+parsed+GIF+files.+An+attacker+could+create+a+specially+crafted+document%2C+which+once+opened+by+a+local%2C+unsuspecting+user%2C+could+cause+OpenOffice.org+to+crash.+Note%3A+This+flaw+affects+embedded+GIF+files+in+OpenOffice.org+documents+as+well+as+stand-alone+GIF+files.+%28CVE-2009-2950%29%0A%0AAll+users+of+OpenOffice.org+are+advised+to+upgrade+to+these+updated+packages%2C+which+contain+backported+patches+to+correct+these+issues.%0AAll+running+instances+of+OpenOffice.org+applications+must+be+restarted+for+this+update+to+take+effect
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top