Oracle OpenOffice.org < 3.2.1 Multiple Vulnerabilities
High Nessus Plugin ID 46814
SynopsisThe remote Windows host has an application installed that is affected by multiple vulnerabilities.
DescriptionThe version of Oracle OpenOffice.org installed on the remote host is prior to 3.2.1. It is, therefore, affected by several issues :
- There is a TLS/SSL renegotiation vulnerability in the included third-party OpenSSL library. (CVE-2009-3555)
- There is a python scripting vulnerability that could lead to undesired code execution when using the OpenOffice scripting IDE. (CVE-2010-0395)
SolutionUpgrade to Oracle OpenOffice.org version 3.2.1 or later.