Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | |||
ID de Prueba: | 1.3.6.1.4.1.25623.1.0.71497 |
Categoría: | Debian Local Security Checks |
Título: | Debian Security Advisory DSA 2520-1 (openoffice.org) |
Resumen: | The remote host is missing an update to openoffice.org;announced via advisory DSA 2520-1. |
Descripción: | Summary: The remote host is missing an update to openoffice.org announced via advisory DSA 2520-1. Vulnerability Insight: Timo Warns from PRE-CERT discovered multiple heap-based buffer overflows in OpenOffice.org, an office productivity suite. The issues lies in the XML manifest encryption tag parsing code. Using specially crafted files, an attacker can cause application crash and could cause arbitrary code execution. For the stable distribution (squeeze), this problem has been fixed in version 3.2.1-11+squeeze7. openoffice.org package has been replaced by libreoffice in testing (wheezy) and unstable (sid) distributions. For the testing distribution (wheezy), this problem has been fixed in version 1:3.5.4-7. For the unstable distribution (sid), this problem has been fixed in version 1:3.5.4-7. Solution: We recommend that you upgrade your openoffice.org packages. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P |
Referencia Cruzada: |
Common Vulnerability Exposure (CVE) ID: CVE-2012-2665 BugTraq ID: 54769 http://www.securityfocus.com/bid/54769 Debian Security Information: DSA-2520 (Google Search) http://www.debian.org/security/2012/dsa-2520 http://security.gentoo.org/glsa/glsa-201209-05.xml http://www.gentoo.org/security/en/glsa/glsa-201408-19.xml http://www.pre-cert.de/advisories/PRE-SA-2012-05.txt https://bugzilla.redhat.com/show_bug.cgi?id=826077 RedHat Security Advisories: RHSA-2012:1135 http://rhn.redhat.com/errata/RHSA-2012-1135.html http://www.securitytracker.com/id?1027331 http://www.securitytracker.com/id?1027332 http://secunia.com/advisories/50142 http://secunia.com/advisories/50146 http://secunia.com/advisories/50692 http://secunia.com/advisories/60799 http://www.ubuntu.com/usn/USN-1536-1 http://www.ubuntu.com/usn/USN-1537-1 |
Copyright | Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com |
Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |