Mandrake Linux Security Advisory : OpenOffice.org (MDKSA-2004:103)

This script is Copyright (C) 2004-2014 Tenable Network Security, Inc.


Synopsis :

The remote Mandrake Linux host is missing one or more security
updates.

Description :

A vulnerability in OpenOffice.org was reported by pmladek where a
local user may be able to obtain and read documents that belong to
another user. The way that OpenOffice.org created temporary files,
which used the user's umask to create the file, could potentially
allow for other users to have read access to the document (again,
dependent upon the user's umask).

The updated packages have been patched to prevent this problem.

Solution :

Update the affected packages.

Risk factor :

Low / CVSS Base Score : 2.1
(CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:N)

Family: Mandriva Local Security Checks

Nessus Plugin ID: 14840 (mandrake_MDKSA-2004-103.nasl)

Bugtraq ID:

CVE ID: CVE-2004-0752

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now