9.3 - RHSA-2009:1426

Executive Summary

This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.

Summary
Title	openoffice.org security update

Informations
Name	RHSA-2009:1426	First vendor Publication	2009-09-04
Vendor	RedHat	Last vendor Modification	2009-09-04
Severity (Vendor)	Important	Revision	01

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score	9.3	Attack Range	Network
Cvss Impact Score	10	Attack Complexity	Medium
Cvss Expoit Score	8.6	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Problem Description:

Updated openoffice.org packages that correct security issues are now available for Red Hat Enterprise Linux 3, 4, and 5.

This update has been rated as having important security impact by the Red Hat Security Response Team.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AS version 3 - i386, x86_64 Red Hat Desktop version 3 - i386, x86_64 Red Hat Enterprise Linux ES version 3 - i386, x86_64 Red Hat Enterprise Linux WS version 3 - i386, x86_64 Red Hat Enterprise Linux AS version 4 - i386, ppc, x86_64 Red Hat Enterprise Linux Desktop version 4 - i386, x86_64 Red Hat Enterprise Linux ES version 4 - i386, x86_64 Red Hat Enterprise Linux WS version 4 - i386, x86_64 Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64 RHEL Desktop Workstation (v. 5 client) - i386, x86_64 RHEL Optional Productivity Applications (v. 5 server) - i386, x86_64

3. Description:

OpenOffice.org is an office productivity suite that includes desktop applications, such as a word processor, spreadsheet, presentation manager, formula editor, and a drawing program.

An integer underflow flaw and a boundary error flaw, both possibly leading to a heap-based buffer overflow, were found in the way OpenOffice.org parses certain records in Microsoft Word documents. An attacker could create a specially-crafted Microsoft Word document, which once opened by an unsuspecting user, could cause OpenOffice.org to crash or, potentially, execute arbitrary code with the permissions of the user running OpenOffice.org. (CVE-2009-0200, CVE-2009-0201)

All users of OpenOffice.org are advised to upgrade to these updated packages, which contain backported patches to correct these issues. All running instances of OpenOffice.org applications must be restarted for this update to take effect.

4. Solution:

Before applying this update, make sure that all previously-released errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at http://kbase.redhat.com/faq/docs/DOC-11259

5. Bugs fixed (http://bugzilla.redhat.com/):

500993 - CVE-2009-0200 OpenOffice.org Word document Integer Underflow 502194 - CVE-2009-0201 OpenOffice.org Word document buffer overflow

Original Source

Url : https://rhn.redhat.com/errata/RHSA-2009-1426.html

CWE : Common Weakness Enumeration

%	Id	Name
50 %	CWE-189	Numeric Errors (CWE/SANS Top 25)
50 %	CWE-119	Failure to Constrain Operations within the Bounds of a Memory Buffer

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:10726

Oval ID:	oval:org.mitre.oval:def:10726
Title:	Heap-based buffer overflow in OpenOffice.org (OOo) before 3.1.1 and StarOffice/StarSuite 7, 8, and 9 might allow remote attackers to execute arbitrary code via unspecified records in a crafted Word document, related to "table parsing."
Description:	Heap-based buffer overflow in OpenOffice.org (OOo) before 3.1.1 and StarOffice/StarSuite 7, 8, and 9 might allow remote attackers to execute arbitrary code via unspecified records in a crafted Word document, related to "table parsing."
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-0201	Version:	5
Platform(s):	Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5	Product(s):
Definition Synopsis:
OS Section: RHEL3, CentOS3 RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 AND CentOS Linux 3.x AND Configuration section openoffice.org-libs is earlier than 0:1.1.2-44.2.0.EL3 AND openoffice.org is earlier than 0:1.1.2-44.2.0.EL3 AND openoffice.org-i18n is earlier than 0:1.1.2-44.2.0.EL3 OR OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section openoffice.org2-langpack-lt_LT is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-nn_NO is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-ga_IE is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-zh_CN is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-javafilter is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-he_IL is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-draw is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-ko_KR is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-ca_ES is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-base is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-fr is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org is earlier than 0:1.1.5-10.6.0.7.EL4.1 AND openoffice.org-libs is earlier than 0:1.1.5-10.6.0.7.EL4.1 AND openoffice.org2-langpack-pa_IN is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-da_DK is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-emailmerge is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-pt_PT is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-es is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-sv is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-ms_MY is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-cs_CZ is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-xsltfilter is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-ja_JP is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-hu_HU is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-zh_TW is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-sl_SI is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-de is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-pyuno is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2 is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-tr_TR is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-impress is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-bn is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-ar is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-pt_BR is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-af_ZA is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-pl_PL is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-calc is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-zu_ZA is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-fi_FI is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-sk_SK is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-hi_IN is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-nb_NO is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-th_TH is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-et_EE is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-gl_ES is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-it is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-hr_HR is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org-i18n is earlier than 0:1.1.5-10.6.0.7.EL4.1 AND openoffice.org2-langpack-ta_IN is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-gu_IN is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-testtools is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org-kde is earlier than 0:1.1.5-10.6.0.7.EL4.1 AND openoffice.org2-langpack-eu_ES is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-el_GR is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-core is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-ru is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-bg_BG is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-nl is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-sr_CS is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-cy_GB is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-math is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-graphicfilter is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-writer is earlier than 1:2.0.4-5.7.0.6.0.1 OR OS Section: RHEL5, CentOS5, Oracle Linux 5 RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 AND CentOS Linux 5.x AND Oracle Linux 5.x AND Configuration section openoffice.org-langpack-sk_SK is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-zu_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-pa_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-hi_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-et_EE is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-kn_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-zh_TW is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-writer is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ve_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ga_IE is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ta_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ko_KR is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-or_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-da_DK is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-sr_CS is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-pl_PL is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-fr is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ts_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-javafilter is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-as_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-testtools is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-hr_HR is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-de is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-emailmerge is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-xsltfilter is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-tn_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-te_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-sv is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-base is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ca_ES is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-nr_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-core is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-nl is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ur is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-nn_NO is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ar is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ja_JP is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-gu_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-tr_TR is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-eu_ES is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-fi_FI is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-graphicfilter is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-pyuno is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ml_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-gl_ES is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-sdk-doc is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-zh_CN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-xh_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-it is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-sdk is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-es is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-nb_NO is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-sl_SI is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-draw is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-nso_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ms_MY is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-el_GR is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-hu_HU is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ss_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-bn is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-he_IL is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-pt_PT is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-lt_LT is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-af_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-bg_BG is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-calc is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-cs_CZ is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-cy_GB is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-mr_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-headless is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-th_TH is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-pt_BR is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ru is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-math is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-impress is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-st_ZA is earlier than 1:2.3.0-6.11.el5_4.1

Definition Id: oval:org.mitre.oval:def:10881

Oval ID:	oval:org.mitre.oval:def:10881
Title:	Integer underflow in OpenOffice.org (OOo) before 3.1.1 and StarOffice/StarSuite 7, 8, and 9 might allow remote attackers to execute arbitrary code via crafted records in the document table of a Word document, leading to a heap-based buffer overflow.
Description:	Integer underflow in OpenOffice.org (OOo) before 3.1.1 and StarOffice/StarSuite 7, 8, and 9 might allow remote attackers to execute arbitrary code via crafted records in the document table of a Word document, leading to a heap-based buffer overflow.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2009-0200	Version:	5
Platform(s):	Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5	Product(s):
Definition Synopsis:
OS Section: RHEL3, CentOS3 RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 AND CentOS Linux 3.x AND Configuration section openoffice.org-libs is earlier than 0:1.1.2-44.2.0.EL3 AND openoffice.org is earlier than 0:1.1.2-44.2.0.EL3 AND openoffice.org-i18n is earlier than 0:1.1.2-44.2.0.EL3 OR OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 AND CentOS Linux 4.x AND Oracle Linux 4.x AND Configuration section openoffice.org2-langpack-lt_LT is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-nn_NO is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-ga_IE is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-zh_CN is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-javafilter is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-he_IL is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-draw is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-ko_KR is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-ca_ES is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-base is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-fr is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org is earlier than 0:1.1.5-10.6.0.7.EL4.1 AND openoffice.org-libs is earlier than 0:1.1.5-10.6.0.7.EL4.1 AND openoffice.org2-langpack-pa_IN is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-da_DK is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-emailmerge is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-pt_PT is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-es is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-sv is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-ms_MY is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-cs_CZ is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-xsltfilter is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-ja_JP is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-hu_HU is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-zh_TW is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-sl_SI is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-de is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-pyuno is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2 is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-tr_TR is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-impress is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-bn is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-ar is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-pt_BR is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-af_ZA is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-pl_PL is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-calc is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-zu_ZA is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-fi_FI is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-sk_SK is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-hi_IN is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-nb_NO is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-th_TH is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-et_EE is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-gl_ES is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-it is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-hr_HR is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org-i18n is earlier than 0:1.1.5-10.6.0.7.EL4.1 AND openoffice.org2-langpack-ta_IN is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-gu_IN is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-testtools is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org-kde is earlier than 0:1.1.5-10.6.0.7.EL4.1 AND openoffice.org2-langpack-eu_ES is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-el_GR is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-core is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-ru is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-bg_BG is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-nl is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-sr_CS is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-cy_GB is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-math is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-graphicfilter is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-writer is earlier than 1:2.0.4-5.7.0.6.0.1 OR OS Section: RHEL5, CentOS5, Oracle Linux 5 RHEL5, CentOS5 or Oracle Linux 5 The operating system installed on the system is Red Hat Enterprise Linux 5 AND CentOS Linux 5.x AND Oracle Linux 5.x AND Configuration section openoffice.org-langpack-sk_SK is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-zu_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-pa_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-hi_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-et_EE is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-kn_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-zh_TW is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-writer is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ve_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ga_IE is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ta_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ko_KR is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-or_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-da_DK is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-sr_CS is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-pl_PL is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-fr is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ts_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-javafilter is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-as_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-testtools is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-hr_HR is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-de is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-emailmerge is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-xsltfilter is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-tn_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-te_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-sv is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-base is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ca_ES is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-nr_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-core is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-nl is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ur is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-nn_NO is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ar is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ja_JP is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-gu_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-tr_TR is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-eu_ES is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-fi_FI is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-graphicfilter is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-pyuno is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ml_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-gl_ES is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-sdk-doc is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-zh_CN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-xh_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-it is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-sdk is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-es is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-nb_NO is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-sl_SI is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-draw is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-nso_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ms_MY is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-el_GR is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-hu_HU is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ss_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-bn is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-he_IL is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-pt_PT is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-lt_LT is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-af_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-bg_BG is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-calc is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-cs_CZ is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-cy_GB is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-mr_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-headless is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-th_TH is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-pt_BR is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ru is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-math is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-impress is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-st_ZA is earlier than 1:2.3.0-6.11.el5_4.1

Definition Id: oval:org.mitre.oval:def:22001

Oval ID:	oval:org.mitre.oval:def:22001
Title:	ELSA-2009:1426: openoffice.org security update (Important)
Description:	Heap-based buffer overflow in OpenOffice.org (OOo) before 3.1.1 and StarOffice/StarSuite 7, 8, and 9 might allow remote attackers to execute arbitrary code via unspecified records in a crafted Word document, related to "table parsing."
Family:	unix	Class:	patch
Reference(s):	ELSA-2009:1426-01 CVE-2009-0200 CVE-2009-0201	Version:	13
Platform(s):	Oracle Linux 5	Product(s):	openoffice.org openoffice.org2
Definition Synopsis:
Oracle Linux 5.x rpm test openoffice.org-langpack-xh_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-tn_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-af_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-nn_NO is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-tr_TR is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-te_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-calc is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ss_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ml_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-nl is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-testtools is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-nb_NO is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-headless is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ta_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-it is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-el_GR is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-base is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-es is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-da_DK is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ca_ES is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-cs_CZ is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-draw is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ar is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-sl_SI is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-nr_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-kn_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-as_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ts_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ja_JP is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-sk_SK is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-pt_PT is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-cy_GB is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-zh_TW is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-st_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ru is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-xsltfilter is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-pa_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-fi_FI is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-he_IL is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ms_MY is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-bn is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-graphicfilter is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-pyuno is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-writer is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-bg_BG is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-hr_HR is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-pl_PL is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-sdk is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-hi_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-fr is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-pt_BR is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-gu_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-zu_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-math is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ur is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-core is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-impress is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-mr_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-gl_ES is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-hu_HU is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-et_EE is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ko_KR is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-nso_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-sr_CS is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-sdk-doc is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-or_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-javafilter is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-emailmerge is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ve_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-lt_LT is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-eu_ES is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-zh_CN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-sv is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ga_IE is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-de is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-th_TH is earlier than 1:2.3.0-6.11.el5_4.1

Definition Id: oval:org.mitre.oval:def:29111

Oval ID:	oval:org.mitre.oval:def:29111
Title:	RHSA-2009:1426 -- openoffice.org security update (Important)
Description:	Updated openoffice.org packages that correct security issues are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. OpenOffice.org is an office productivity suite that includes desktop applications, such as a word processor, spreadsheet, presentation manager, formula editor, and a drawing program. An integer underflow flaw and a boundary error flaw, both possibly leading to a heap-based buffer overflow, were found in the way OpenOffice.org parses certain records in Microsoft Word documents. An attacker could create a specially-crafted Microsoft Word document, which once opened by an unsuspecting user, could cause OpenOffice.org to crash or, potentially, execute arbitrary code with the permissions of the user running OpenOffice.org. (CVE-2009-0200, CVE-2009-0201) All users of OpenOffice.org are advised to upgrade to these updated packages, which contain backported patches to correct these issues. All running instances of OpenOffice.org applications must be restarted for this update to take effect.
Family:	unix	Class:	patch
Reference(s):	RHSA-2009:1426 CESA-2009:1426-CentOS 3 CVE-2009-0200 CVE-2009-0201	Version:	3
Platform(s):	Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 3	Product(s):	openoffice.org openoffice.org2
Definition Synopsis:
Red Hat Enterprise Linux 5 release section The operating system installed on the system is Red Hat Enterprise Linux 5 Packages match section openoffice.org-sdk is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-sdk-doc is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-base is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-calc is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-core is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-draw is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-emailmerge is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-graphicfilter is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-headless is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-impress is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-javafilter is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-af_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ar is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-as_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-bg_BG is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-bn is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ca_ES is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-cs_CZ is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-cy_GB is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-da_DK is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-de is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-el_GR is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-es is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-et_EE is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-eu_ES is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-fi_FI is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-fr is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ga_IE is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-gl_ES is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-gu_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-he_IL is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-hi_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-hr_HR is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-hu_HU is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-it is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ja_JP is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-kn_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ko_KR is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-lt_LT is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ml_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-mr_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ms_MY is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-nb_NO is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-nl is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-nn_NO is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-nr_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-nso_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-or_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-pa_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-pl_PL is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-pt_BR is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-pt_PT is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ru is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-sk_SK is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-sl_SI is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-sr_CS is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ss_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-st_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-sv is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ta_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-te_IN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-th_TH is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-tn_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-tr_TR is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ts_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ur is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-ve_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-xh_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-zh_CN is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-zh_TW is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-langpack-zu_ZA is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-math is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-pyuno is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-testtools is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-writer is earlier than 1:2.3.0-6.11.el5_4.1 AND openoffice.org-xsltfilter is earlier than 1:2.3.0-6.11.el5_4.1 AND Red Hat Enterprise Linux 3 release section The operating system installed on the system is Red Hat Enterprise Linux 3 Packages match section openoffice.org is earlier than 1:1.1.2-44.2.0.EL3 AND openoffice.org-i18n is earlier than 1:1.1.2-44.2.0.EL3 AND openoffice.org-libs is earlier than 1:1.1.2-44.2.0.EL3 AND Red Hat Enterprise Linux 4 release section The operating system installed on the system is Red Hat Enterprise Linux 4 Packages match section openoffice.org is earlier than 1:1.1.5-10.6.0.7.EL4.1 AND openoffice.org-i18n is earlier than 1:1.1.5-10.6.0.7.EL4.1 AND openoffice.org-kde is earlier than 1:1.1.5-10.6.0.7.EL4.1 AND openoffice.org-libs is earlier than 1:1.1.5-10.6.0.7.EL4.1 AND openoffice.org2-base is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-calc is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-core is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-draw is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-emailmerge is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-graphicfilter is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-impress is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-javafilter is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-af_ZA is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-ar is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-bg_BG is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-bn is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-ca_ES is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-cs_CZ is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-cy_GB is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-da_DK is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-de is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-el_GR is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-es is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-et_EE is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-eu_ES is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-fi_FI is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-fr is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-ga_IE is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-gl_ES is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-gu_IN is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-he_IL is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-hi_IN is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-hr_HR is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-hu_HU is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-it is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-ja_JP is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-ko_KR is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-lt_LT is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-ms_MY is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-nb_NO is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-nl is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-nn_NO is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-pa_IN is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-pl_PL is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-pt_BR is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-pt_PT is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-ru is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-sk_SK is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-sl_SI is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-sr_CS is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-sv is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-ta_IN is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-th_TH is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-tr_TR is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-zh_CN is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-zh_TW is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-langpack-zu_ZA is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-math is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-pyuno is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-testtools is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-writer is earlier than 1:2.0.4-5.7.0.6.0.1 AND openoffice.org2-xsltfilter is earlier than 1:2.0.4-5.7.0.6.0.1

CPE : Common Platform Enumeration

Type	Description	Count
Application	Openoffice Openoffice.Org cpe:2.3:a:openoffice:openoffice.org:643:::::::* cpe:2.3:a:openoffice:openoffice.org:641d:::::::* cpe:2.3:a:openoffice:openoffice.org:641b:::::::* cpe:2.3:a:openoffice:openoffice.org:638c:::::::* cpe:2.3:a:openoffice:openoffice.org:638:::::::* cpe:2.3:a:openoffice:openoffice.org:633:::::::* cpe:2.3:a:openoffice:openoffice.org:627:::::::* cpe:2.3:a:openoffice:openoffice.org:619:::::::* cpe:2.3:a:openoffice:openoffice.org:614:::::::* cpe:2.3:a:openoffice:openoffice.org:609:::::::* cpe:2.3:a:openoffice:openoffice.org:605b:::::::* cpe:2.3:a:openoffice:openoffice.org:3.01:::::::* cpe:2.3:a:openoffice:openoffice.org:2.4.1::64-bit::::: cpe:2.3:a:openoffice:openoffice.org:2.4.1:::::::* cpe:2.3:a:openoffice:openoffice.org:2.4:::::::* cpe:2.3:a:openoffice:openoffice.org:2.3.1:::::::* cpe:2.3:a:openoffice:openoffice.org:2.3:::::::* cpe:2.3:a:openoffice:openoffice.org:2.2.1:::::::* cpe:2.3:a:openoffice:openoffice.org:2.2:::::::* cpe:2.3:a:openoffice:openoffice.org:2.1.154:::::::* cpe:2.3:a:openoffice:openoffice.org:2.1.152:::::::* cpe:2.3:a:openoffice:openoffice.org:2.1:::::::* cpe:2.3:a:openoffice:openoffice.org:2.0.4:::::::* cpe:2.3:a:openoffice:openoffice.org:2.0.3:::::::* cpe:2.3:a:openoffice:openoffice.org:2.0.2:rc2:::::: cpe:2.3:a:openoffice:openoffice.org:2.0.2:::::::* cpe:2.3:a:openoffice:openoffice.org:2.0.2:rc1:::::: cpe:2.3:a:openoffice:openoffice.org:2.0.1:::::::* cpe:2.3:a:openoffice:openoffice.org:2.0:beta2:::::: cpe:2.3:a:openoffice:openoffice.org:2.0:::::::* cpe:2.3:a:openoffice:openoffice.org:1.9.95:::::::* cpe:2.3:a:openoffice:openoffice.org:1.9.93:::::::* cpe:2.3:a:openoffice:openoffice.org:1.9.91:::::::* cpe:2.3:a:openoffice:openoffice.org:1.9.87:::::::* cpe:2.3:a:openoffice:openoffice.org:1.9.84:::::::* cpe:2.3:a:openoffice:openoffice.org:1.9.680:::::::* cpe:2.3:a:openoffice:openoffice.org:1.9.156:::::::* cpe:2.3:a:openoffice:openoffice.org:1.9.130:::::::* cpe:2.3:a:openoffice:openoffice.org:1.9.122:::::::* cpe:2.3:a:openoffice:openoffice.org:1.9.118:::::::* cpe:2.3:a:openoffice:openoffice.org:1.9.113:::::::* cpe:2.3:a:openoffice:openoffice.org:1.9.104:::::::* cpe:2.3:a:openoffice:openoffice.org:1.9.100:::::::* cpe:2.3:a:openoffice:openoffice.org:1.1.5:::::::* cpe:2.3:a:openoffice:openoffice.org:1.1.4:::::::* cpe:2.3:a:openoffice:openoffice.org:1.1.3:::::::* cpe:2.3:a:openoffice:openoffice.org:1.1.2:::::::* cpe:2.3:a:openoffice:openoffice.org:1.1.1:::::::* cpe:2.3:a:openoffice:openoffice.org:1.1:rc1:::::: cpe:2.3:a:openoffice:openoffice.org:1.1:beta2:::::: cpe:2.3:a:openoffice:openoffice.org:1.1:rc3:::::: cpe:2.3:a:openoffice:openoffice.org:1.1:::::::* cpe:2.3:a:openoffice:openoffice.org:1.1:beta:::::: cpe:2.3:a:openoffice:openoffice.org:1.0.3.1:::::::* cpe:2.3:a:openoffice:openoffice.org:1.0.2:::::::* cpe:2.3:a:openoffice:openoffice.org:1.0.1:::::::* cpe:2.3:a:openoffice:openoffice.org:1.0.0:::::::* cpe:2.3:a:openoffice:openoffice.org:1.0-ru:::::::* cpe:2.3:a:openoffice:openoffice.org::::::::	59

OpenVAS Exploits

Date	Description
2011-08-09	Name : CentOS Update for openoffice.org CESA-2009:1426 centos3 i386 File : nvt/gb_CESA-2009_1426_openoffice.org_centos3_i386.nasl
2011-08-09	Name : CentOS Update for openoffice.org CESA-2009:1426 centos4 i386 File : nvt/gb_CESA-2009_1426_openoffice.org_centos4_i386.nasl
2010-05-28	Name : Mandriva Update for openoffice.org MDVSA-2010:105 (openoffice.org) File : nvt/gb_mandriva_MDVSA_2010_105.nasl
2010-05-07	Name : Mandriva Update for openoffice.org MDVSA-2010:091 (openoffice.org) File : nvt/gb_mandriva_MDVSA_2010_091.nasl
2010-03-22	Name : Mandriva Update for lvm2 MDVA-2010:105 (lvm2) File : nvt/gb_mandriva_MDVA_2010_105.nasl
2010-03-12	Name : Mandriva Update for slib MDVA-2010:091 (slib) File : nvt/gb_mandriva_MDVA_2010_091.nasl
2010-03-12	Name : Mandriva Update for openoffice.org MDVSA-2010:056 (openoffice.org) File : nvt/gb_mandriva_MDVSA_2010_056.nasl
2010-02-15	Name : Mandriva Update for samba MDVA-2010:056 (samba) File : nvt/gb_mandriva_MDVA_2010_056.nasl
2010-02-15	Name : Mandriva Update for openoffice.org MDVSA-2010:035 (openoffice.org) File : nvt/gb_mandriva_MDVSA_2010_035.nasl
2009-09-21	Name : SuSE Security Summary SUSE-SR:2009:015 File : nvt/suse_sr_2009_015.nasl
2009-09-09	Name : RedHat Security Advisory RHSA-2009:1426 File : nvt/RHSA_2009_1426.nasl
2009-09-09	Name : Fedora Core 10 FEDORA-2009-9256 (openoffice.org) File : nvt/fcore_2009_9256.nasl
2009-09-09	Name : CentOS Security Advisory CESA-2009:1426 (openoffice.org) File : nvt/ovcesa2009_1426.nasl
2009-09-08	Name : OpenOffice.org Word Documents Parsing Buffer Overflow Vulnerability (Linux) File : nvt/gb_openoffice_word_bof_vuln_lin.nasl
2009-09-08	Name : OpenOffice.org Word Documents Parsing Buffer Overflow Vulnerability (Win) File : nvt/gb_openoffice_word_bof_vuln_win.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
58211	StarOffice / StarSuite Word Document Table Parsing Heap Overflow
58210	StarOffice / StarSuite Word Document Table Parsing Buffer Overflow
57659	OpenOffice.org (OOo) Word Document Table Parsing Heap Overflow
57658	OpenOffice.org (OOo) Word Document Table Parsing Buffer Overflow

Snort® IPS/IDS

Date	Description
2015-07-22	OpenOffice Word document table parsing sprmTDelete heap buffer overflow attempt RuleID : 34925 - Revision : 2 - Type : FILE-OFFICE
2015-07-22	OpenOffice Word document table parsing sprmTDelete heap buffer overflow attempt RuleID : 34924 - Revision : 2 - Type : FILE-OFFICE
2014-01-10	OpenOffice Word document table parsing heap buffer overflow attempt RuleID : 17665 - Revision : 8 - Type : FILE-OFFICE

Nessus® Vulnerability Scanner

Date	Description
2014-09-01	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201408-19.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2009-1426.nasl - Type : ACT_GATHER_INFO
2013-01-24	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2009-1426.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20090904_openoffice_org_on_SL3_x.nasl - Type : ACT_GATHER_INFO
2011-01-27	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_OpenOffice_org-6469.nasl - Type : ACT_GATHER_INFO
2011-01-21	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_OpenOffice_org-090828.nasl - Type : ACT_GATHER_INFO
2010-07-30	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2010-035.nasl - Type : ACT_GATHER_INFO
2010-05-24	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2010-105.nasl - Type : ACT_GATHER_INFO
2010-03-08	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2010-056.nasl - Type : ACT_GATHER_INFO
2010-02-24	Name : The remote Debian host is missing a security-related update. File : debian_DSA-1880.nasl - Type : ACT_GATHER_INFO
2009-10-06	Name : The remote openSUSE host is missing a security update. File : suse_OpenOffice_org-6421.nasl - Type : ACT_GATHER_INFO
2009-10-02	Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-840-1.nasl - Type : ACT_GATHER_INFO
2009-09-24	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_OpenOffice_org-090829.nasl - Type : ACT_GATHER_INFO
2009-09-08	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2009-1426.nasl - Type : ACT_GATHER_INFO
2009-09-08	Name : The remote openSUSE host is missing a security update. File : suse_11_0_OpenOffice_org-090810.nasl - Type : ACT_GATHER_INFO
2009-09-08	Name : The remote openSUSE host is missing a security update. File : suse_11_1_OpenOffice_org-math-090810.nasl - Type : ACT_GATHER_INFO
2009-09-04	Name : The remote Fedora host is missing a security update. File : fedora_2009-9256.nasl - Type : ACT_GATHER_INFO
2009-09-01	Name : The remote Windows host has a program affected by multiple buffer overflows. File : openoffice_311.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2014-02-17 11:52:51	Multiple Updates

Global Informations

Type	Count
CWE ID(s)	2
Oval ID(s)	4
CPE ID(s)	59
osvdb(s)	4
Openvas Exploit(s)	15
Snort® Rule(s)	3
Nessus® Exploit(s)	18

	Related
9.3	CVE-2009-0201
9.3	CVE-2009-0200
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 2 more Alert(s)