Fedora 7 : openoffice.org-2.3.0-6.8.fc7 (2008-4104)

This script is Copyright (C) 2008-2016 Tenable Network Security, Inc.


Synopsis :

The remote Fedora host is missing a security update.

Description :

Following security issues were addressed in this update: #
CVE-2007-5745/5747: Manipulated Quattro Pro files can lead to heap
overflows and arbitrary code execution # CVE-2007-5746: Manipulated
EMF files can lead to heap overflows and arbitrary code execution #
CVE-2008-0320: Manipulated OLE files can lead to heap overflows and
arbitrary code execution

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.

See also :

https://bugzilla.redhat.com/show_bug.cgi?id=435675
https://bugzilla.redhat.com/show_bug.cgi?id=435676
https://bugzilla.redhat.com/show_bug.cgi?id=435678
https://bugzilla.redhat.com/show_bug.cgi?id=435681
http://www.nessus.org/u?dfcf1d99

Solution :

Update the affected openoffice.org package.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.1
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : true

Family: Fedora Local Security Checks

Nessus Plugin ID: 32385 (fedora_2008-4104.nasl)

Bugtraq ID: 28819

CVE ID: CVE-2007-5745
CVE-2007-5746
CVE-2007-5747
CVE-2008-0320

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now