 |
Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | ||
| ID de Prueba: | 1.3.6.1.4.1.25623.1.0.900042 |
| Categoría: | General |
| Título: | OpenOffice rtl_allocateMemory() Remote Code Execution Vulnerability (Windows) |
| Resumen: | This host has OpenOffice.Org installed, which is prone to remote; code execution vulnerability. |
| Descripción: | Summary: This host has OpenOffice.Org installed, which is prone to remote code execution vulnerability. Vulnerability Insight: The issue is due to a numeric truncation error within the rtl_allocateMemory() method in alloc_global.c file. Vulnerability Impact: Attackers can cause an out of bounds array access by tricking a user into opening a malicious document, also allow execution of arbitrary code. Affected Software/OS: OpenOffice.org 2.4.1 and prior on Windows. Solution: Upgrade to OpenOffice.org Version 3.2.0 or later. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C |
| Referencia Cruzada: |
BugTraq ID: 30866 Common Vulnerability Exposure (CVE) ID: CVE-2008-3282 http://www.securityfocus.com/bid/30866 https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00494.html https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00120.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11345 http://www.redhat.com/support/errata/RHSA-2008-0835.html http://securitytracker.com/id?1020764 http://secunia.com/advisories/31640 http://secunia.com/advisories/31646 http://secunia.com/advisories/31778 http://www.vupen.com/english/advisories/2008/2449 XForce ISS Database: openoffice-rtlallocatememory-code-execution(44742) https://exchange.xforce.ibmcloud.com/vulnerabilities/44742 |
| Copyright | Copyright (C) 2008 Greenbone Networks GmbH |
| Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |