12 matches found
Mandriva Linux Security Advisory : openoffice.org (MDVSA-2009:070)
senddoc uses temporary files /tmp/log.obr.4043 in a insecure way which enables local attackers to overwrite arbitrary files by using a symlink attack CVE-2008-4937. This update provides fix for that vulnerability. Update : Further this update is a rebuild against lastest xulrunner 1.9.0.6...
Ubuntu 6.06 LTS / 7.10 / 8.04 LTS / 8.10 : openoffice.org, openoffice.org-amd64 vulnerabilities (USN-677-1)
Multiple memory overflow flaws were discovered in OpenOffice.org's handling of WMF and EMF files. If a user were tricked into opening a specially crafted document, a remote attacker might be able to execute arbitrary code with user privileges. CVE-2008-2237, CVE-2008-2238 Dmitry E. Oboukhov...
Ubuntu: Security Advisory (USN-677-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mandrake Security Advisory MDVSA-2009:070 (openoffice.org)
The remote host is missing an update to openoffice.org announced via advisory MDVSA-2009:070. OpenVAS Vulnerability Test $Id: mdksa2009070.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:070 openoffice.org Authors: Thomas Reinke Copyright: Copyright ...
Mandrake Security Advisory MDVSA-2009:070 (openoffice.org)
The remote host is missing an update to openoffice.org announced via advisory MDVSA-2009:070. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...
Ubuntu: Security Advisory (USN-677-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu USN-677-2 (OpenOffice)
The remote host is missing an update to OpenOffice announced via advisory USN-677-2. Original advisory details: Multiple memory overflow flaws were discovered in OpenOffice.org's handling of WMF and EMF files. If a user were tricked into opening a specially crafted document, a remote attacker mig...
USN-677-2: OpenOffice.org Internationalization update
USN-677-1 fixed vulnerabilities in OpenOffice.org. The changes required that openoffice.org-l10n also be updated for the new version in Ubuntu 8.04 LTS. Original advisory details: Multiple memory overflow flaws were discovered in OpenOffice.org's handling of WMF and EMF files. If a user were...
Gentoo Security Advisory GLSA 200812-13 (openoffice openoffice-bin)
The remote host is missing updates announced in advisory GLSA 200812-13. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-677-1: OpenOffice.org vulnerabilities
Multiple memory overflow flaws were discovered in OpenOffice.org's handling of WMF and EMF files. If a user were tricked into opening a specially crafted document, a remote attacker might be able to execute arbitrary code with user privileges. CVE-2008-2237, CVE-2008-2238 Dmitry E. Oboukhov...
CVE-2008-4937
senddoc in OpenOffice.org OOo 2.4.1 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/log.obr. temporary file...
CVE-2008-4937
CVE-2008-4937 affects OpenOffice.org’s senddoc in version 2.4.1, where a local attacker can exploit a symlink race on a /tmp/log.obr.##### file to overwrite arbitrary files. The vulnerability arises from insecure temporary-file handling, permitting local privilege impact (I: Partial; A: Partial) ...