Lucene search
This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLELINUX_ELSA-2008-0939.NASLHistoryJul 12, 2013 - 12:00 a.m.
Oracle Linux 3 / 4 : openoffice.org (ELSA-2008-0939)
2013-07-1200:00:00
This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
14
From Red Hat Security Advisory 2008:0939 :
Updated openoffice.org packages that correct security issues are now available for Red Hat Enterprise Linux 3, 4, and 5.
This update has been rated as having important security impact by the Red Hat Security Response Team.
OpenOffice.org is an office productivity suite that includes desktop applications such as a word processor, spreadsheet, presentation manager, formula editor, and drawing program.
SureRun Security Team discovered an integer overflow flaw leading to a heap buffer overflow in the Windows Metafile (WMF) image format parser. An attacker could create a carefully crafted document containing a malicious WMF file that could cause OpenOffice.org to crash, or, possibly, execute arbitrary code if opened by a victim.
(CVE-2008-2237)
Multiple integer overflow flaws were found in the Enhanced Windows Metafile (EMF) parser. An attacker could create a carefully crafted document containing a malicious EMF file that could cause OpenOffice.org to crash, or, possibly, execute arbitrary code if opened by a victim. (CVE-2008-2238)
All users of OpenOffice.org are advised to upgrade to these updated packages, which contain backported patches that correct these issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Red Hat Security Advisory RHSA-2008:0939 and
# Oracle Linux Security Advisory ELSA-2008-0939 respectively.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(67756);
script_version("1.8");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");
script_cve_id("CVE-2008-2237", "CVE-2008-2238");
script_bugtraq_id(31962);
script_xref(name:"RHSA", value:"2008:0939");
script_name(english:"Oracle Linux 3 / 4 : openoffice.org (ELSA-2008-0939)");
script_summary(english:"Checks rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:"The remote Oracle Linux host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"From Red Hat Security Advisory 2008:0939 :
Updated openoffice.org packages that correct security issues are now
available for Red Hat Enterprise Linux 3, 4, and 5.
This update has been rated as having important security impact by the
Red Hat Security Response Team.
OpenOffice.org is an office productivity suite that includes desktop
applications such as a word processor, spreadsheet, presentation
manager, formula editor, and drawing program.
SureRun Security Team discovered an integer overflow flaw leading to a
heap buffer overflow in the Windows Metafile (WMF) image format
parser. An attacker could create a carefully crafted document
containing a malicious WMF file that could cause OpenOffice.org to
crash, or, possibly, execute arbitrary code if opened by a victim.
(CVE-2008-2237)
Multiple integer overflow flaws were found in the Enhanced Windows
Metafile (EMF) parser. An attacker could create a carefully crafted
document containing a malicious EMF file that could cause
OpenOffice.org to crash, or, possibly, execute arbitrary code if
opened by a victim. (CVE-2008-2238)
All users of OpenOffice.org are advised to upgrade to these updated
packages, which contain backported patches that correct these issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://oss.oracle.com/pipermail/el-errata/2008-November/000788.html"
);
script_set_attribute(
attribute:"see_also",
value:"https://oss.oracle.com/pipermail/el-errata/2008-November/000789.html"
);
script_set_attribute(
attribute:"solution",
value:"Update the affected openoffice.org packages."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:ND/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_cwe_id(119);
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:openoffice.org");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:openoffice.org-i18n");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:openoffice.org-kde");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:openoffice.org-libs");
script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:linux:3");
script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:linux:4");
script_set_attribute(attribute:"vuln_publication_date", value:"2008/10/30");
script_set_attribute(attribute:"patch_publication_date", value:"2008/11/06");
script_set_attribute(attribute:"plugin_publication_date", value:"2013/07/12");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Oracle Linux Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/OracleLinux", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/OracleLinux")) audit(AUDIT_OS_NOT, "Oracle Linux");
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || !pregmatch(pattern: "Oracle (?:Linux Server|Enterprise Linux)", string:release)) audit(AUDIT_OS_NOT, "Oracle Linux");
os_ver = pregmatch(pattern: "Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Oracle Linux");
os_ver = os_ver[1];
if (! preg(pattern:"^(3|4)([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Oracle Linux 3 / 4", "Oracle Linux " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && "ia64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Oracle Linux", cpu);
flag = 0;
if (rpm_check(release:"EL3", cpu:"i386", reference:"openoffice.org-1.1.2-43.2.0.EL3")) flag++;
if (rpm_check(release:"EL3", cpu:"x86_64", reference:"openoffice.org-1.1.2-43.2.0.EL3")) flag++;
if (rpm_check(release:"EL3", cpu:"i386", reference:"openoffice.org-i18n-1.1.2-43.2.0.EL3")) flag++;
if (rpm_check(release:"EL3", cpu:"x86_64", reference:"openoffice.org-i18n-1.1.2-43.2.0.EL3")) flag++;
if (rpm_check(release:"EL3", cpu:"i386", reference:"openoffice.org-libs-1.1.2-43.2.0.EL3")) flag++;
if (rpm_check(release:"EL3", cpu:"x86_64", reference:"openoffice.org-libs-1.1.2-43.2.0.EL3")) flag++;
if (rpm_check(release:"EL4", cpu:"i386", reference:"openoffice.org-1.1.5-10.6.0.7.EL4")) flag++;
if (rpm_check(release:"EL4", cpu:"x86_64", reference:"openoffice.org-1.1.5-10.6.0.7.EL4")) flag++;
if (rpm_check(release:"EL4", cpu:"i386", reference:"openoffice.org-i18n-1.1.5-10.6.0.7.EL4")) flag++;
if (rpm_check(release:"EL4", cpu:"x86_64", reference:"openoffice.org-i18n-1.1.5-10.6.0.7.EL4")) flag++;
if (rpm_check(release:"EL4", cpu:"i386", reference:"openoffice.org-kde-1.1.5-10.6.0.7.EL4")) flag++;
if (rpm_check(release:"EL4", cpu:"i386", reference:"openoffice.org-libs-1.1.5-10.6.0.7.EL4")) flag++;
if (rpm_check(release:"EL4", cpu:"x86_64", reference:"openoffice.org-libs-1.1.5-10.6.0.7.EL4")) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
else security_hole(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "openoffice.org / openoffice.org-i18n / openoffice.org-kde / etc");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| oracle | linux | openoffice.org | p-cpe:/a:oracle:linux:openoffice.org |
| oracle | linux | openoffice.org-i18n | p-cpe:/a:oracle:linux:openoffice.org-i18n |
| oracle | linux | openoffice.org-kde | p-cpe:/a:oracle:linux:openoffice.org-kde |
| oracle | linux | openoffice.org-libs | p-cpe:/a:oracle:linux:openoffice.org-libs |
| oracle | linux | 3 | cpe:/o:oracle:linux:3 |
| oracle | linux | 4 | cpe:/o:oracle:linux:4 |
Related
nessus
nessus
Fedora 9 : openoffice.org-2.4.2-18.1.fc9 (2008-9313)
2008-11-03 00:00:00
openSUSE Security Update : OpenOffice_org (OpenOffice_org-288)
2009-07-21 00:00:00
openvas
openvas
Debian Security Advisory DSA 1661-1 (openoffice.org)
2008-11-01 00:00:00
CentOS Update for openoffice.org CESA-2008:0939 centos3 x86_64
2009-02-27 00:00:00
Debian: Security Advisory (DSA-1661-1)
2008-11-01 00:00:00
osv
osv
openoffice.org - several vulnerabilities
2008-10-29 00:00:00
debian
debian
[Backports-security-announce] Security update for openoffice.org
2008-10-30 10:38:12
[Backports-security-announce] Security update for openoffice.org
2008-10-30 10:37:01
[Backports-security-announce] Security update for openoffice.org
2008-10-30 10:37:01
centos
centos
openoffice.org security update
2008-11-05 18:54:09
redhat
redhat
(RHSA-2008:0939) Important: openoffice.org security update
2008-11-05 00:00:00
oraclelinux
oraclelinux
openoffice.org security update
2008-11-05 00:00:00
seebug
seebug
OpenOffice WMFεEMFζδ»Άε€ηε ηΌε²εΊζΊ’εΊζΌζ΄
2008-10-31 00:00:00
freebsd
freebsd
openoffice -- arbitrary code execution vulnerabilities
2008-10-29 00:00:00
gentoo
gentoo
OpenOffice.org: Multiple vulnerabilities
2008-12-12 00:00:00
ubuntu
ubuntu
OpenOffice.org Internationalization update
2008-12-23 00:00:00
OpenOffice.org vulnerabilities
2008-11-26 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: openoffice.org-2.4.2-18.1.fc9
2008-10-31 10:24:00
[SECURITY] Fedora 8 Update: openoffice.org-2.3.0-6.17.fc8
2008-10-31 10:27:14
checkpoint_advisories
checkpoint_advisories
OpenOffice EMF File EMR Record Parsing Integer Overflow (CVE-2008-2238)
2010-06-16 00:00:00
securityvulns
securityvulns
iDefense Security Advisory 10.31.08: OpenOffice EMF Record Parsing Multiple Integer Overflow Vulnerabilities
2008-11-02 00:00:00
OpenOffice integer overflow
2008-11-02 00:00:00
prion
prion
cve
cve
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:29:33
Arbitrary Code Execution
2020-04-10 00:29:32
ubuntucve
ubuntucve
redhatcve
redhatcve
CVE-2009-2139
2015-10-30 10:16:24
Related for ORACLELINUX_ELSA-2008-0939.NASL