Mandrake Linux Security Advisory : openoffice.org (MDKSA-2007:073)
High Nessus Plugin ID 24941
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionStack-based buffer overflow in the StarCalc parser in OpenOffice.org (OOo) Office Suite allows user-assisted remote attackers to execute arbitrary code via a crafted document. (CVE-2007-0238)
OpenOffice.org (OOo) Office Suite allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in a prepared link in a crafted document. (CVE-2007-0239)
Updated packages have been patched to correct these issues.
SolutionUpdate the affected packages.