SuSE Update For OpenOffice_org SUSE-SA:2007:052 Network Vulnerability

Impact

remote code execution

Solution

Please Install the Updated Packages.

Insight

OpenOffice_org was updated to fix a bug in TIFF parsing code that lead to a heap overflow. CVE-2007-2834 This bug can be exploited with user assistance (a user opening a malicious document) to execute arbitrary code.

Affected

OpenOffice_org on SUSE LINUX 10.1, openSUSE 10.2, Novell Linux Desktop 9, SUSE Linux Enterprise Desktop 10 SP1, SLE SDK 10 SP1

References

http://www.novell.com/linux/security/advisories/2007_52_ooo.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2007-2834

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

SLES10: Security update for libpng
SLES10: Security update for Epiphany
SLES10: Security update for compat-curl2
SLES10: Security update for libapr
SLES10: Security update for Java Struts

SuSE Update for OpenOffice_org SUSE-SA:2007:052

Take action and discover your vulnerabilities