Family: Red Hat Local Security Checks --> Category: infos
RHSA-2007-0011: libgsf Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the libgsf packages
Detailed Explanation for this Vulnerability Test
Updated libgsf packages that fix a buffer overflow flaw are now available.
This update has been rated as having moderate security impact by the Red
Security Response Team.
The GNOME Structured File Library is a utility library for reading and
writing structured file formats.
A heap based buffer overflow flaw was found in the way GNOME Structured
File Library processes and certain OLE documents. If an person opened a
specially crafted OLE file, it could cause the client application to crash
execute arbitrary code. (CVE-2006-4514)
Users of GNOME Structured File Library should upgrade to these updated
packages, which contain a backported patch that resolves this issue.
Solution : http://rhn.redhat.com/errata/RHSA-2007-0011.html
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.