ID de Prueba:	1.3.6.1.4.1.25623.1.0.71231
Categoría:	Mandrake Local Security Checks
Título:	Mandriva Security Advisory MDVSA-2012:062 (openoffice.org)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to openoffice.org announced via advisory MDVSA-2012:062. An XML External Entity expansion flaw was found in the way Raptor processed RDF files. If an application linked against Raptor were to open a specially-crafted RDF file, it could possibly allow a remote attacker to obtain a copy of an arbitrary local file that the user running the application had access to. A bug in the way Raptor handled external entities could cause that application to crash or, possibly, execute arbitrary code with the privileges of the user running the application (CVE-2012-0037). The updated packages have been patched to correct this issue. Affected: Enterprise Server 5.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDVSA-2012:062 http://www.libreoffice.org/advisories/CVE-2012-0037/ Risk factor : High
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2012-0037 BugTraq ID: 52681 http://www.securityfocus.com/bid/52681 Debian Security Information: DSA-2438 (Google Search) http://www.debian.org/security/2012/dsa-2438 http://lists.fedoraproject.org/pipermail/package-announce/2012-April/077708.html http://lists.fedoraproject.org/pipermail/package-announce/2012-April/078242.html http://security.gentoo.org/glsa/glsa-201209-05.xml http://www.gentoo.org/security/en/glsa/glsa-201408-19.xml http://www.mandriva.com/security/advisories?name=MDVSA-2012:061 http://www.mandriva.com/security/advisories?name=MDVSA-2012:062 http://www.mandriva.com/security/advisories?name=MDVSA-2012:063 http://vsecurity.com/resources/advisory/20120324-1/ https://lists.apache.org/thread.html/re0504f08000df786e51795940501e81a5d0ae981ecca68141e87ece0@%3Ccommits.openoffice.apache.org%3E http://www.openwall.com/lists/oss-security/2012/03/27/4 http://www.osvdb.org/80307 RedHat Security Advisories: RHSA-2012:0410 http://rhn.redhat.com/errata/RHSA-2012-0410.html RedHat Security Advisories: RHSA-2012:0411 http://rhn.redhat.com/errata/RHSA-2012-0411.html http://www.securitytracker.com/id?1026837 http://secunia.com/advisories/48479 http://secunia.com/advisories/48493 http://secunia.com/advisories/48494 http://secunia.com/advisories/48526 http://secunia.com/advisories/48529 http://secunia.com/advisories/48542 http://secunia.com/advisories/48649 http://secunia.com/advisories/50692 http://secunia.com/advisories/60799 XForce ISS Database: openoffice-xml-info-disclosure(74235) https://exchange.xforce.ibmcloud.com/vulnerabilities/74235
Copyright	Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.