OpenOffice < 3.2.1 Multiple Vulnerabilities
Medium Nessus Network Monitor Plugin ID 5564
SynopsisThe remote host has a program that is affected by multiple vulnerabilities.
DescriptionThe version of OpenOffice installed on the remote host is earlier than 3.2.1. Such version are affected by several issues :
- There is a TLS/SSL renegotiation vulnerability in the included third-party OpenSSL library. (CVE-2009-3555)
- There is a python scripting vulnerability which may lead to undesired code execution when using the OpenOffice scripting IDE. (CVE-2010-0395)
SolutionUpgrade to OpenOffice version 3.2.1 or later.