|
Family: Gentoo Local Security Checks --> Category: infos
[GLSA-200612-05] KOffice shared libraries: Heap corruption Vulnerability Scan
Vulnerability Scan Summary KOffice shared libraries: Heap corruption
Detailed Explanation for this Vulnerability Test
The remote host is affected by the vulnerability described in GLSA-200612-05
(KOffice shared libraries: Heap corruption)
Kees Cook of Ubuntu discovered that 'KLaola::readBigBlockDepot()' in
klaola.cc fills 'num_of_bbd_blocks' while reading a .ppt (PowerPoint)
file without proper sanitizing, resulting in an integer overflow
subsequently overwriting the heap with parts of the file being read.
Impact
By enticing a user to open a specially crafted PowerPoint file, an
attacker could crash the application and possibly execute arbitrary
code with the rights of the user running KOffice.
Workaround
There is no known workaround at this time.
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6120
Solution:
All koffice-libs users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=app-office/koffice-libs-1.5.0"
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|