SuSE 10 Security Update : libwmf (ZYPP Patch Number 1833)
High Nessus Plugin ID 29515
SynopsisThe remote SuSE 10 host is missing a security-related patch.
DescriptionA heap overflow could be triggered by specially crafted WMF (Windows Meta Files) in the libwmf library. This problem could be exploited to execute code, by a remote attacker providing a file with embedded WMF data to an application understanding this (like OpenOffice_org, abiword, gimp).
This issue is tracked by the Mitre CVE ID CVE-2006-3376.
SolutionApply ZYPP patch number 1833.