|
|
Family: Ubuntu Local Security Checks --> Category: infos
USN203-1 : abiword vulnerabilities Vulnerability Scan
Vulnerability Scan Summary
abiword vulnerabilities
Detailed Explanation for this Vulnerability Test
Synopsis :
These remote packages are missing security patches :
- abiword
- abiword-common
- abiword-doc
- abiword-gnome
- abiword-help
- abiword-tests
- abiword-tests-gnome
- xfonts-abi
Description :
Chris Evans discovered several buffer overflows in the RTF import
module of AbiWord. By tricking a user into opening an RTF file with
specially crafted long identifiers, a possible hacker could exploit this to
execute arbitrary code with the rights of the AbiWord user.
Solution :
Upgrade to :
- abiword-2.2.2-1ubuntu2.2 (Ubuntu 5.04)
- abiword-common-2.2.2-1ubuntu2.2 (Ubuntu 5.04)
- abiword-doc-2.2.2-1ubuntu2.2 (Ubuntu 5.04)
- abiword-gnome-2.2.2-1ubuntu2.2 (Ubuntu 5.04)
- abiword-help-2.2.2-1ubuntu2.2 (Ubuntu 5.04)
- abiword-tests-2.2.2-1ubuntu2.2 (Ubuntu 5.04)
- abiword-tests-gnome-2.2.2-1ubuntu2.2 (Ubuntu 5.04)
- xfonts-abi-2.2.2-1ubuntu2.2 (Ubuntu 5.04)
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|
