Executive Summary



This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.
Summary
Title OpenOffice.org: Multiple vulnerabilities
Informations
Name GLSA-200805-16 First vendor Publication 2008-05-14
Vendor Gentoo Last vendor Modification 2008-05-14
Severity (Vendor) Normal Revision N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score 9.3 Attack Range Network
Cvss Impact Score 10 Attack Complexity Medium
Cvss Expoit Score 8.6 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Synopsis

Multiple vulnerabilities have been reported in OpenOffice.org, possibly allowing for user-assisted execution of arbitrary code.

Background

OpenOffice.org is an open source office productivity suite, including word processing, spreadsheet, presentation, drawing, data charting, formula editing, and file conversion facilities.

Description

iDefense Labs reported multiple vulnerabilities in OpenOffice.org:

* multiple heap-based buffer overflows when parsing the "Attribute"
and "Font" Description records of Quattro Pro (QPRO) files (CVE-2007-5745),

* an integer overflow when parsing the EMR_STRETCHBLT record of an EMF file, resulting in a heap-based buffer overflow (CVE-2007-5746),

* an integer underflow when parsing Quattro Pro (QPRO) files,
resulting in an excessive loop and a stack-based buffer overflow (CVE-2007-5747),

* and a heap-based buffer overflow when parsing the "DocumentSummaryInformation" stream in an OLE file (CVE-2008-0320).

Furthermore, Will Drewry (Google Security) reported vulnerabilities in the memory management of the International Components for Unicode
(CVE-2007-4770, CVE-2007-4771), which was resolved with GLSA 200803-20.
However, the binary version of OpenOffice.org uses an internal copy of said library.

Impact

A remote attacker could entice a user to open a specially crafted document, possibly resulting in the remote execution of arbitrary code with the privileges of the user running OpenOffice.org.

Workaround

There is no known workaround at this time.

Resolution

All OpenOffice.org users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=app-office/openoffice-2.4.0"

All OpenOffice.org binary users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=app-office/openoffice-bin-2.4.0"

References

[ 1 ] CVE-2007-4770 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4770
[ 2 ] CVE-2007-4771 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4771
[ 3 ] CVE-2007-5745 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5745
[ 4 ] CVE-2007-5746 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5746
[ 5 ] CVE-2007-5747 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5747
[ 6 ] CVE-2008-0320 : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0320
[ 7 ] GLSA 200803-20 : http://www.gentoo.org/security/en/glsa/glsa-200803-20.xml

Availability

This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

http://security.gentoo.org/glsa/glsa-200805-16.xml

Original Source

Url : http://security.gentoo.org/glsa/glsa-200805-16.xml

CWE : Common Weakness Enumeration

% Id Name
33 % CWE-399 Resource Management Errors
33 % CWE-189 Numeric Errors (CWE/SANS Top 25)
33 % CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:10249
 
Oval ID: oval:org.mitre.oval:def:10249
Title: Integer overflow in OpenOffice.org before 2.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an EMF file with a crafted EMR_STRETCHBLT record, which triggers a heap-based buffer overflow.
Description: Integer overflow in OpenOffice.org before 2.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an EMF file with a crafted EMR_STRETCHBLT record, which triggers a heap-based buffer overflow.
Family: unix Class: vulnerability
Reference(s): CVE-2007-5746
 Version: 5
Platform(s): Red Hat Enterprise Linux 3
CentOS Linux 3
Red Hat Enterprise Linux 4
CentOS Linux 4
Oracle Linux 4
Red Hat Enterprise Linux 5
CentOS Linux 5
Oracle Linux 5
 Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:10318
 
Oval ID: oval:org.mitre.oval:def:10318
Title: Heap-based buffer overflow in the OLE importer in OpenOffice.org before 2.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an OLE file with a crafted DocumentSummaryInformation stream.
Description: Heap-based buffer overflow in the OLE importer in OpenOffice.org before 2.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an OLE file with a crafted DocumentSummaryInformation stream.
Family: unix Class: vulnerability
Reference(s): CVE-2008-0320
 Version: 5
Platform(s): Red Hat Enterprise Linux 3
CentOS Linux 3
Red Hat Enterprise Linux 4
CentOS Linux 4
Oracle Linux 4
Red Hat Enterprise Linux 5
CentOS Linux 5
Oracle Linux 5
 Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:10507
 
Oval ID: oval:org.mitre.oval:def:10507
Title: Heap-based buffer overflow in the doInterval function in regexcmp.cpp in libicu in International Components for Unicode (ICU) 3.8.1 and earlier allows context-dependent attackers to cause a denial of service (memory consumption) and possibly have unspecified other impact via a regular expression that writes a large amount of data to the backtracking stack. NOTE: some of these details are obtained from third party information.
Description: Heap-based buffer overflow in the doInterval function in regexcmp.cpp in libicu in International Components for Unicode (ICU) 3.8.1 and earlier allows context-dependent attackers to cause a denial of service (memory consumption) and possibly have unspecified other impact via a regular expression that writes a large amount of data to the backtracking stack. NOTE: some of these details are obtained from third party information.
Family: unix Class: vulnerability
Reference(s): CVE-2007-4771
 Version: 5
Platform(s): Red Hat Enterprise Linux 5
CentOS Linux 5
Oracle Linux 5
 Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:11006
 
Oval ID: oval:org.mitre.oval:def:11006
Title: Multiple heap-based buffer overflows in OpenOffice.org before 2.4 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Quattro Pro (QPRO) file with crafted (1) Attribute and (2) Font Description records.
Description: Multiple heap-based buffer overflows in OpenOffice.org before 2.4 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Quattro Pro (QPRO) file with crafted (1) Attribute and (2) Font Description records.
Family: unix Class: vulnerability
Reference(s): CVE-2007-5745
 Version: 5
Platform(s): Red Hat Enterprise Linux 4
CentOS Linux 4
Oracle Linux 4
Red Hat Enterprise Linux 5
CentOS Linux 5
Oracle Linux 5
 Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:11172
 
Oval ID: oval:org.mitre.oval:def:11172
Title: libicu in International Components for Unicode (ICU) 3.8.1 and earlier attempts to process backreferences to the nonexistent capture group zero (aka \0), which might allow context-dependent attackers to read from, or write to, out-of-bounds memory locations, related to corruption of REStackFrames.
Description: libicu in International Components for Unicode (ICU) 3.8.1 and earlier attempts to process backreferences to the nonexistent capture group zero (aka \0), which might allow context-dependent attackers to read from, or write to, out-of-bounds memory locations, related to corruption of REStackFrames.
Family: unix Class: vulnerability
Reference(s): CVE-2007-4770
 Version: 5
Platform(s): Red Hat Enterprise Linux 5
CentOS Linux 5
Oracle Linux 5
 Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:11298
 
Oval ID: oval:org.mitre.oval:def:11298
Title: Integer underflow in OpenOffice.org before 2.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Quattro Pro (QPRO) file with crafted values that trigger an excessive loop and a stack-based buffer overflow.
Description: Integer underflow in OpenOffice.org before 2.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Quattro Pro (QPRO) file with crafted values that trigger an excessive loop and a stack-based buffer overflow.
Family: unix Class: vulnerability
Reference(s): CVE-2007-5747
 Version: 5
Platform(s): Red Hat Enterprise Linux 4
CentOS Linux 4
Oracle Linux 4
Red Hat Enterprise Linux 5
CentOS Linux 5
Oracle Linux 5
 Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:17630
 
Oval ID: oval:org.mitre.oval:def:17630
Title: USN-609-1 -- hsqldb, openoffice.org/-amd64 vulnerabilities
Description: It was discovered that arbitrary Java methods were not filtered out when opening databases in OpenOffice.org.
Family: unix Class: patch
Reference(s): USN-609-1
CVE-2007-4575
CVE-2007-5745
CVE-2007-5746
CVE-2007-5747
CVE-2008-0320
 Version: 7
Platform(s): Ubuntu 6.06
Ubuntu 7.04
Ubuntu 7.10
 Product(s): hsqldb
openoffice.org
openoffice.org-amd64
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:17696
 
Oval ID: oval:org.mitre.oval:def:17696
Title: USN-591-1 -- icu vulnerabilities
Description: Will Drewry discovered that libicu did not properly handle '\0' when processing regular expressions.
Family: unix Class: patch
Reference(s): USN-591-1
CVE-2007-4770
CVE-2007-4771
 Version: 7
Platform(s): Ubuntu 6.06
Ubuntu 6.10
Ubuntu 7.04
Ubuntu 7.10
 Product(s): icu
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:18730
 
Oval ID: oval:org.mitre.oval:def:18730
Title: DSA-1547-1 openoffice.org
Description: Several security related problems have been discovered in OpenOffice.org, the free office suite.
Family: unix Class: patch
Reference(s): DSA-1547-1
CVE-2007-5745
CVE-2007-5746
CVE-2007-5747
CVE-2008-0320
 Version: 7
Platform(s): Debian GNU/Linux 4.0
 Product(s): openoffice.org
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:18778
 
Oval ID: oval:org.mitre.oval:def:18778
Title: DSA-1511-1 icu - multiple problems
Description: Several local vulnerabilities have been discovered in libicu, International Components for Unicode,
Family: unix Class: patch
Reference(s): DSA-1511-1
CVE-2007-4770
CVE-2007-4771
 Version: 7
Platform(s): Debian GNU/Linux 4.0
 Product(s): icu
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:21714
 
Oval ID: oval:org.mitre.oval:def:21714
Title: ELSA-2008:0090: icu security update (Important)
Description: Heap-based buffer overflow in the doInterval function in regexcmp.cpp in libicu in International Components for Unicode (ICU) 3.8.1 and earlier allows context-dependent attackers to cause a denial of service (memory consumption) and possibly have unspecified other impact via a regular expression that writes a large amount of data to the backtracking stack. NOTE: some of these details are obtained from third party information.
Family: unix Class: patch
Reference(s): ELSA-2008:0090-01
CVE-2007-4770
CVE-2007-4771
 Version: 13
Platform(s): Oracle Linux 5
 Product(s): icu
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:21720
 
Oval ID: oval:org.mitre.oval:def:21720
Title: ELSA-2008:0175: openoffice.org security update (Important)
Description: Heap-based buffer overflow in the OLE importer in OpenOffice.org before 2.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an OLE file with a crafted DocumentSummaryInformation stream.
Family: unix Class: patch
Reference(s): ELSA-2008:0175-01
CVE-2007-5746
CVE-2008-0320
CVE-2007-5745
CVE-2007-5747
 Version: 21
Platform(s): Oracle Linux 5
 Product(s): openoffice.org
openoffice.org2
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:5431
 
Oval ID: oval:org.mitre.oval:def:5431
Title: Multiple Security Vulnerabilities in ICU 3.2 Library Regular Expression Processing May Cause a Denial of Service (DoS)
Description: Heap-based buffer overflow in the doInterval function in regexcmp.cpp in libicu in International Components for Unicode (ICU) 3.8.1 and earlier allows context-dependent attackers to cause a denial of service (memory consumption) and possibly have unspecified other impact via a regular expression that writes a large amount of data to the backtracking stack. NOTE: some of these details are obtained from third party information.
Family: unix Class: vulnerability
Reference(s): CVE-2007-4771
 Version: 1
Platform(s): Sun Solaris 9
Sun Solaris 10
 Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:5507
 
Oval ID: oval:org.mitre.oval:def:5507
Title: Multiple Security Vulnerabilities in ICU 3.2 Library Regular Expression Processing May Cause a Denial of Service (DoS)
Description: libicu in International Components for Unicode (ICU) 3.8.1 and earlier attempts to process backreferences to the nonexistent capture group zero (aka \0), which might allow context-dependent attackers to read from, or write to, out-of-bounds memory locations, related to corruption of REStackFrames.
Family: unix Class: vulnerability
Reference(s): CVE-2007-4770
 Version: 1
Platform(s): Sun Solaris 9
Sun Solaris 10
 Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:8123
 
Oval ID: oval:org.mitre.oval:def:8123
Title: DSA-1547 openoffice.org -- several vulnerabilities
Description: Several security related problems have been discovered in OpenOffice.org, the free office suite. The Common Vulnerabilities and Exposures project identifies the following problems: Several bugs have been discovered in the way OpenOffice.org parses Quattro Pro files that may lead to a overflow in the heap potentially leading to the execution of arbitrary code. Specially crafted EMF files can trigger a buffer overflow in the heap that may lead to the execution of arbitrary code. A bug has been discovered in the processing of OLE files that can cause a buffer overflow in the heap potentially leading to the execution of arbitrary code. Recently reported problems in the ICU library are fixed in separate libicu packages with DSA 1511 against which OpenOffice.org is linked.
Family: unix Class: patch
Reference(s): DSA-1547
CVE-2007-5745
CVE-2007-5746
CVE-2007-5747
CVE-2008-0320
 Version: 3
Platform(s): Debian GNU/Linux 4.0
Debian GNU/Linux 3.1
 Product(s): openoffice.org
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:8243
 
Oval ID: oval:org.mitre.oval:def:8243
Title: DSA-1511 libicu -- various
Description: Several local vulnerabilities have been discovered in libicu, International Components for Unicode, The Common Vulnerabilities and Exposures project identifies the following problems: libicu in International Components for Unicode (ICU) 3.8.1 and earlier attempts to process backreferences to the nonexistent capture group zero (aka \0), which might allow context-dependent attackers to read from, or write to, out-of-bounds memory locations, related to corruption of REStackFrames. Heap-based buffer overflow in the doInterval function in regexcmp.cpp in libicu in International Components for Unicode (ICU) 3.8.1 and earlier allows context-dependent attackers to cause a denial of service (memory consumption) and possibly have unspecified other impact via a regular expression that writes a large amount of data to the backtracking stack.
Family: unix Class: patch
Reference(s): DSA-1511
CVE-2007-4770
CVE-2007-4771
 Version: 3
Platform(s): Debian GNU/Linux 4.0
 Product(s): libicu
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 1
Application 34
Application 44
Application 10

SAINT Exploits

Description Link
OpenOffice OLE importer DocumentSummaryInformation buffer overflow More info here

ExploitDB Exploits

id Description
2012-05-25 OpenOffice OLE Importer DocumentSummaryInformation Stream Handling Overflow

OpenVAS Exploits

Date Description
2009-10-13 Name : SLES10: Security update for icu
File : nvt/sles10_icu0.nasl
2009-06-03 Name : Solaris Update for International Components for Unicode 114677-15
File : nvt/gb_solaris_114677_15.nasl
2009-06-03 Name : Solaris Update for International Components for Unicode 114678-15
File : nvt/gb_solaris_114678_15.nasl
2009-06-03 Name : Solaris Update for International Components for Unicode 119810-05
File : nvt/gb_solaris_119810_05.nasl
2009-06-03 Name : Solaris Update for International Components for Unicode 119811-05
File : nvt/gb_solaris_119811_05.nasl
2009-04-09 Name : Mandriva Update for icu MDVSA-2008:026 (icu)
File : nvt/gb_mandriva_MDVSA_2008_026.nasl
2009-04-09 Name : Mandriva Update for openoffice.org MDVSA-2008:095 (openoffice.org)
File : nvt/gb_mandriva_MDVSA_2008_095.nasl
2009-03-23 Name : Ubuntu Update for hsqldb, openoffice.org/-amd64 vulnerabilities USN-609-1
File : nvt/gb_ubuntu_USN_609_1.nasl
2009-03-23 Name : Ubuntu Update for icu vulnerabilities USN-591-1
File : nvt/gb_ubuntu_USN_591_1.nasl
2009-03-06 Name : RedHat Update for icu RHSA-2008:0090-01
File : nvt/gb_RHSA-2008_0090-01_icu.nasl
2009-03-06 Name : RedHat Update for openoffice.org RHSA-2008:0175-01
File : nvt/gb_RHSA-2008_0175-01_openoffice.org.nasl
2009-03-06 Name : RedHat Update for openoffice.org RHSA-2008:0176-01
File : nvt/gb_RHSA-2008_0176-01_openoffice.org.nasl
2009-02-27 Name : CentOS Update for openoffice.org CESA-2008:0176 centos4 x86_64
File : nvt/gb_CESA-2008_0176_openoffice.org_centos4_x86_64.nasl
2009-02-27 Name : CentOS Update for openoffice.org CESA-2008:0176 centos4 i386
File : nvt/gb_CESA-2008_0176_openoffice.org_centos4_i386.nasl
2009-02-27 Name : CentOS Update for openoffice.org CESA-2008:0176 centos3 x86_64
File : nvt/gb_CESA-2008_0176_openoffice.org_centos3_x86_64.nasl
2009-02-27 Name : CentOS Update for openoffice.org CESA-2008:0176 centos3 i386
File : nvt/gb_CESA-2008_0176_openoffice.org_centos3_i386.nasl
2009-02-27 Name : CentOS Update for openoffice.org2-base CESA-2008:0175 centos4 x86_64
File : nvt/gb_CESA-2008_0175_openoffice.org2-base_centos4_x86_64.nasl
2009-02-27 Name : CentOS Update for openoffice.org2-base CESA-2008:0175 centos4 i386
File : nvt/gb_CESA-2008_0175_openoffice.org2-base_centos4_i386.nasl
2009-02-17 Name : Fedora Update for openoffice.org FEDORA-2008-5239
File : nvt/gb_fedora_2008_5239_openoffice.org_fc7.nasl
2009-02-17 Name : Fedora Update for openoffice.org FEDORA-2008-9333
File : nvt/gb_fedora_2008_9333_openoffice.org_fc8.nasl
2009-02-17 Name : Fedora Update for openoffice.org FEDORA-2008-7531
File : nvt/gb_fedora_2008_7531_openoffice.org_fc8.nasl
2009-02-17 Name : Fedora Update for openoffice.org FEDORA-2008-5247
File : nvt/gb_fedora_2008_5247_openoffice.org_fc8.nasl
2009-02-17 Name : Fedora Update for openoffice.org FEDORA-2008-4104
File : nvt/gb_fedora_2008_4104_openoffice.org_fc7.nasl
2009-02-17 Name : Fedora Update for openoffice.org FEDORA-2008-3251
File : nvt/gb_fedora_2008_3251_openoffice.org_fc8.nasl
2009-02-16 Name : Fedora Update for icu FEDORA-2008-1076
File : nvt/gb_fedora_2008_1076_icu_fc7.nasl
2009-02-16 Name : Fedora Update for icu FEDORA-2008-1036
File : nvt/gb_fedora_2008_1036_icu_fc8.nasl
2009-01-23 Name : SuSE Update for OpenOffice_org SUSE-SA:2008:023
File : nvt/gb_suse_2008_023.nasl
2008-09-24 Name : Gentoo Security Advisory GLSA 200803-20 (icu)
File : nvt/glsa_200803_20.nasl
2008-09-24 Name : Gentoo Security Advisory GLSA 200805-16 (openoffice openoffice-bin)
File : nvt/glsa_200805_16.nasl
2008-04-21 Name : Debian Security Advisory DSA 1547-1 (openoffice.org)
File : nvt/deb_1547_1.nasl
2008-03-11 Name : Debian Security Advisory DSA 1511-1 (libicu)
File : nvt/deb_1511_1.nasl

Open Source Vulnerability Database (OSVDB)

Id Description
44472 OpenOffice.org (OOo) OLE Importer DocumentSummaryInformation Stream Handling ...
44471 OpenOffice.org (OOo) Quattro Pro (QPRO) File Crafted Value Processing Overflow
44470 OpenOffice.org (OOo) EMF File EMR_STRETCHBLT Record Handling Overflow
44469 OpenOffice.org (OOo) Quattro Pro (QPRO) File Multiple Record Handling Overflow
41190 International Components for Unicode (ICU) libicu regexcmp.cpp doInterval Fun...
41189 International Components for Unicode (ICU) libicu REStackFrames Memory Corrup...

Snort® IPS/IDS

Date Description
2016-03-14 Microsoft emf file download request
RuleID : 33740-community - Revision : 2 - Type : FILE-IMAGE
2015-04-10 Microsoft emf file download request
RuleID : 33740 - Revision : 2 - Type : FILE-IMAGE
2014-01-10 Microsoft Office Excel FngGroupCount record overflow attempt
RuleID : 27634 - Revision : 2 - Type : FILE-OFFICE
2014-01-10 OpenOffice OLE File Stream Buffer Overflow attempt
RuleID : 26453 - Revision : 3 - Type : FILE-OFFICE
2014-01-10 Microsoft emf file download request
RuleID : 2435-community - Revision : 33 - Type : FILE-IDENTIFY
2014-01-10 Microsoft emf file download request
RuleID : 2435 - Revision : 33 - Type : FILE-IDENTIFY
2014-01-10 EMF corruption attempt
RuleID : 23105 - Revision : 4 - Type : FILE-OFFICE
2014-01-10 EMF corruption attempt
RuleID : 23095 - Revision : 5 - Type : FILE-OFFICE
2014-01-10 EMF corruption attempt
RuleID : 23094 - Revision : 5 - Type : FILE-OFFICE
2014-01-10 EMF corruption attempt
RuleID : 23093 - Revision : 4 - Type : FILE-OFFICE
2014-01-10 EMF corruption attempt
RuleID : 23092 - Revision : 5 - Type : FILE-OFFICE
2014-01-10 EMF corruption attempt
RuleID : 23091 - Revision : 4 - Type : FILE-OFFICE
2014-01-10 OpenOffice OLE file stream buffer overflow attempt
RuleID : 17315 - Revision : 14 - Type : FILE-OFFICE

Nessus® Vulnerability Scanner

Date Description
2013-07-12 Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2008-0176.nasl - Type : ACT_GATHER_INFO
2013-07-12 Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2008-0090.nasl - Type : ACT_GATHER_INFO
2012-08-01 Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20080417_openoffice_org_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2012-08-01 Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20080417_openoffice_org_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2012-08-01 Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20080417_openoffice_org2_on_SL4_5_and_4_6.nasl - Type : ACT_GATHER_INFO
2012-08-01 Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20080125_icu_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2010-01-06 Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2008-0090.nasl - Type : ACT_GATHER_INFO
2009-04-23 Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2008-095.nasl - Type : ACT_GATHER_INFO
2009-04-23 Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2008-026.nasl - Type : ACT_GATHER_INFO
2008-05-20 Name : The remote Fedora host is missing a security update.
File : fedora_2008-4104.nasl - Type : ACT_GATHER_INFO
2008-05-16 Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-200805-16.nasl - Type : ACT_GATHER_INFO
2008-05-09 Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-609-1.nasl - Type : ACT_GATHER_INFO
2008-04-25 Name : The remote Fedora host is missing a security update.
File : fedora_2008-3251.nasl - Type : ACT_GATHER_INFO
2008-04-22 Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2008-0175.nasl - Type : ACT_GATHER_INFO
2008-04-22 Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2008-0176.nasl - Type : ACT_GATHER_INFO
2008-04-22 Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2008-0176.nasl - Type : ACT_GATHER_INFO
2008-04-22 Name : The remote openSUSE host is missing a security update.
File : suse_OpenOffice_org-5053.nasl - Type : ACT_GATHER_INFO
2008-04-22 Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2008-0175.nasl - Type : ACT_GATHER_INFO
2008-04-18 Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1547.nasl - Type : ACT_GATHER_INFO
2008-04-17 Name : The remote Windows host has a program that is affected by multiple vulnerabil...
File : openoffice_240.nasl - Type : ACT_GATHER_INFO
2008-03-26 Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-591-1.nasl - Type : ACT_GATHER_INFO
2008-03-13 Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-200803-20.nasl - Type : ACT_GATHER_INFO
2008-03-07 Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1511.nasl - Type : ACT_GATHER_INFO
2008-03-07 Name : The remote openSUSE host is missing a security update.
File : suse_icu-5013.nasl - Type : ACT_GATHER_INFO
2008-03-07 Name : The remote SuSE 10 host is missing a security-related patch.
File : suse_icu-5014.nasl - Type : ACT_GATHER_INFO
2008-01-27 Name : The remote Fedora host is missing a security update.
File : fedora_2008-1076.nasl - Type : ACT_GATHER_INFO
2008-01-27 Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2008-0090.nasl - Type : ACT_GATHER_INFO
2008-01-27 Name : The remote Fedora host is missing a security update.
File : fedora_2008-1036.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
1
Date Informations
2014-02-17 11:35:52
  • Multiple Updates
2013-05-11 00:44:47
  • Multiple Updates