| VID |
28199 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The host has been detected as installed a version of OpenOffice.org which is older than version 2.2. OpenOffice.org (OOo) Office Suite versions prior to 2.2 could allow a user-assisted remote attacker to execute arbitrary code on the affected host, caused by multiple buffer overflow vulnerabilities in its handling of StarCalc and WordPerfect documents. By convincing a user to open a specially-crafted OpenOffice or WordPerfect document, a remote attacker could execute arbitrary code on the host or cause the application to crash. If the user is logged in with administrative privileges, the attacker could take complete control of a vulnerable system.
* Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://www.securityfocus.com/archive/1/archive/1/464724/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/463033/100/0/threaded
http://sourceforge.net/project/shownotes.php?release_id=494122
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=490
http://www.ngssoftware.com/advisories/high-risk-vulnerabilities-in-the-openoffice-suite/
http://www.frsirt.com/english/advisories/2007/0976
http://www.frsirt.com/english/advisories/2007/1032
http://www.frsirt.com/english/advisories/2007/1117
http://www.frsirt.com/english/advisories/2007/1339
http://www.securitytracker.com/id?1017789
http://www.securitytracker.com/id?1017799
* Platforms Affected:
OpenOffice.org Source Project, OpenOffice.org Office Suite versions prior to 2.2
Any operating system Any version |
| Recommendation |
Upgrade to the latest version of OpenOffice.org (2.2 or later), available from the OpenOffice.org Download Web site at http://download.openoffice.org/index.html |
| Related URL |
CVE-2007-0002,CVE-2007-0238,CVE-2007-1466 (CVE) |
| Related URL |
23006,23067 (SecurityFocus) |
| Related URL |
33109,33110,33112 (ISS) |
|
