RHEL 3 : openoffice.org (RHSA-2004:446)
Low Nessus Plugin ID 14739
SynopsisThe remote Red Hat host is missing one or more security updates.
DescriptionUpdated openoffice.org packages that fix a security issue in temporary file handling are now available.
OpenOffice.org is an office productivity suite that includes desktop applications such as a word processor, spreadsheet, presentation manager, formula editor, and drawing program.
Secunia Research reported an issue with the handling of temporary files. A malicious local user could use this flaw to access the contents of another user's open documents. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0752 to this issue.
All users of OpenOffice.org are advised to upgrade to these updated packages which contain a backported patch to correct this issue.
SolutionUpdate the affected openoffice.org, openoffice.org-i18n and / or openoffice.org-libs packages.