Family: SuSE Local Security Checks --> Category: infos
SUSE-SA:2005:025: OpenOffice_org Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the OpenOffice_org package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory SUSE-SA:2005:025 (OpenOffice_org).
This security update fixes a buffer overflow in OpenOffice_org
Microsoft Word document reader which could allow a remote attacker
sending a handcrafted .doc file to execute code as the user
opening the document in OpenOffice.
This is tracked by the Mitre CVE ID CVE-2005-0941.
WARNING: The updated packages are very large for distributions before
SUSE Linux 9.2 and 9.3.
The minimum download sizes for those are:
SUSE Linux Desktop 1: 47 MB
Novell Linux Desktop 9: 41 MB
SUSE Linux 8.2: 37 MB
SUSE Linux 9.0: 46 MB
SUSE Linux 9.1: 50 MB
SUSE Linux 9.2: 2.1 MB (using delta rpm)
SUSE Linux 9.3: 3.5 MB (using delta rpm)
Solution : http://www.suse.de/security/advisories/2005_25_openoffice_org.html
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.