SUSE-SA:2007:001: OpenOffice_org

high Nessus Plugin ID 24456

Synopsis

The remote host is missing a vendor-supplied security patch

Description

The remote host is missing the patch for the advisory SUSE-SA:2007:001 (OpenOffice_org).


Security problems were fixed in the WMF and Enhanced WMF handling in OpenOffice_org These could potentially be used to execute code or crash OpenOffice when a user could be convinced to open specially crafted document (for instance a document sent by E-mail).

This issue is tracked by the Mitre CVE ID CVE-2006-5870.

openSUSE 10.2 is not affected by this problem, it already contains the fixed OpenOffice_org 2.1 version.

Additionally the OpenOffice_org 2.0 version in SLED 10 was fitted with hooks to add OfficeXML support with a later update.

Due to the very large size of this update and mirror lag it might take some hours or days until the updates are available on our mirrors.

Solution

http://www.novell.com/linux/security/advisories/2007_01_openoffice.html

Plugin Details

Severity: High

ID: 24456

File Name: suse_SA_2007_001.nasl

Version: 1.10

Agent: unix

Published: 2/18/2007

Updated: 1/14/2021

Supported Sensors: Nessus Agent, Nessus

Vulnerability Information

Required KB Items: Host/SuSE/rpm-list