Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2005:082: OpenOffice.org Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the OpenOffice.org package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2005:082 (OpenOffice.org).
AD-LAB discovered a heap overflow in the StgCompObjStream::Load() function when
OpenOffice.org processes DOC documents. If a possible hacker created a malicious DOC
document that contained a specially crafted header, it could execute arbitrary
code with the rights of the user running OpenOffice.org.
The updated packages have been patched to prevent this problem.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2005:082
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.