|
Family: Ubuntu Local Security Checks --> Category: infos
USN188-1 : abiword vulnerability Vulnerability Scan
Vulnerability Scan Summary abiword vulnerability
Detailed Explanation for this Vulnerability Test
Synopsis :
These remote packages are missing security patches :
- abiword
- abiword-common
- abiword-doc
- abiword-gnome
- abiword-help
- abiword-tests
- abiword-tests-gnome
- xfonts-abi
Description :
Chris Evans discovered a buffer overflow in the RTF import module of
AbiWord. By tricking a user into opening an RTF file with specially
crafted long identifiers, a possible hacker could exploit this to execute
arbitrary code with the rights of the AbiWord user.
Solution :
Upgrade to :
- abiword-2.2.2-1ubuntu2.1 (Ubuntu 5.04)
- abiword-common-2.2.2-1ubuntu2.1 (Ubuntu 5.04)
- abiword-doc-2.2.2-1ubuntu2.1 (Ubuntu 5.04)
- abiword-gnome-2.2.2-1ubuntu2.1 (Ubuntu 5.04)
- abiword-help-2.2.2-1ubuntu2.1 (Ubuntu 5.04)
- abiword-tests-2.2.2-1ubuntu2.1 (Ubuntu 5.04)
- abiword-tests-gnome-2.2.2-1ubuntu2.1 (Ubuntu 5.04)
- xfonts-abi-2.2.2-1ubuntu2.1 (Ubuntu 5.04)
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|