Rapid7 Vulnerability & Exploit Database

RHSA-2008:0939: openoffice.org security update

Back to Search

RHSA-2008:0939: openoffice.org security update

Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
10/30/2008
Created
07/25/2018
Added
02/22/2009
Modified
07/04/2017

Description

OpenOffice.org is an office productivity suite that includes desktopapplications such as a word processor, spreadsheet, presentation manager,formula editor, and drawing program.SureRun Security Team discovered an integer overflow flaw leading to a heapbuffer overflow in the Windows Metafile (WMF) image format parser. Anattacker could create a carefully crafted document containing a maliciousWMF file that could cause OpenOffice.org to crash, or, possibly, executearbitrary code if opened by a victim. (CVE-2008-2237)Multiple integer overflow flaws were found in the Enhanced Windows Metafile(EMF) parser. An attacker could create a carefully crafted documentcontaining a malicious EMF file that could cause OpenOffice.org to crash,or, possibly, execute arbitrary code if opened by a victim. (CVE-2008-2238)All users of OpenOffice.org are advised to upgrade to these updatedpackages, which contain backported patches that correct these issues.

Solution(s)

  • redhat-upgrade-openoffice-org
  • redhat-upgrade-openoffice-org-base
  • redhat-upgrade-openoffice-org-calc
  • redhat-upgrade-openoffice-org-core
  • redhat-upgrade-openoffice-org-draw
  • redhat-upgrade-openoffice-org-emailmerge
  • redhat-upgrade-openoffice-org-graphicfilter
  • redhat-upgrade-openoffice-org-headless
  • redhat-upgrade-openoffice-org-i18n
  • redhat-upgrade-openoffice-org-impress
  • redhat-upgrade-openoffice-org-javafilter
  • redhat-upgrade-openoffice-org-kde
  • redhat-upgrade-openoffice-org-langpack-af_za
  • redhat-upgrade-openoffice-org-langpack-ar
  • redhat-upgrade-openoffice-org-langpack-as_in
  • redhat-upgrade-openoffice-org-langpack-bg_bg
  • redhat-upgrade-openoffice-org-langpack-bn
  • redhat-upgrade-openoffice-org-langpack-ca_es
  • redhat-upgrade-openoffice-org-langpack-cs_cz
  • redhat-upgrade-openoffice-org-langpack-cy_gb
  • redhat-upgrade-openoffice-org-langpack-da_dk
  • redhat-upgrade-openoffice-org-langpack-de
  • redhat-upgrade-openoffice-org-langpack-el_gr
  • redhat-upgrade-openoffice-org-langpack-es
  • redhat-upgrade-openoffice-org-langpack-et_ee
  • redhat-upgrade-openoffice-org-langpack-eu_es
  • redhat-upgrade-openoffice-org-langpack-fi_fi
  • redhat-upgrade-openoffice-org-langpack-fr
  • redhat-upgrade-openoffice-org-langpack-ga_ie
  • redhat-upgrade-openoffice-org-langpack-gl_es
  • redhat-upgrade-openoffice-org-langpack-gu_in
  • redhat-upgrade-openoffice-org-langpack-he_il
  • redhat-upgrade-openoffice-org-langpack-hi_in
  • redhat-upgrade-openoffice-org-langpack-hr_hr
  • redhat-upgrade-openoffice-org-langpack-hu_hu
  • redhat-upgrade-openoffice-org-langpack-it
  • redhat-upgrade-openoffice-org-langpack-ja_jp
  • redhat-upgrade-openoffice-org-langpack-kn_in
  • redhat-upgrade-openoffice-org-langpack-ko_kr
  • redhat-upgrade-openoffice-org-langpack-lt_lt
  • redhat-upgrade-openoffice-org-langpack-ml_in
  • redhat-upgrade-openoffice-org-langpack-mr_in
  • redhat-upgrade-openoffice-org-langpack-ms_my
  • redhat-upgrade-openoffice-org-langpack-nb_no
  • redhat-upgrade-openoffice-org-langpack-nl
  • redhat-upgrade-openoffice-org-langpack-nn_no
  • redhat-upgrade-openoffice-org-langpack-nr_za
  • redhat-upgrade-openoffice-org-langpack-nso_za
  • redhat-upgrade-openoffice-org-langpack-or_in
  • redhat-upgrade-openoffice-org-langpack-pa_in
  • redhat-upgrade-openoffice-org-langpack-pl_pl
  • redhat-upgrade-openoffice-org-langpack-pt_br
  • redhat-upgrade-openoffice-org-langpack-pt_pt
  • redhat-upgrade-openoffice-org-langpack-ru
  • redhat-upgrade-openoffice-org-langpack-sk_sk
  • redhat-upgrade-openoffice-org-langpack-sl_si
  • redhat-upgrade-openoffice-org-langpack-sr_cs
  • redhat-upgrade-openoffice-org-langpack-ss_za
  • redhat-upgrade-openoffice-org-langpack-st_za
  • redhat-upgrade-openoffice-org-langpack-sv
  • redhat-upgrade-openoffice-org-langpack-ta_in
  • redhat-upgrade-openoffice-org-langpack-te_in
  • redhat-upgrade-openoffice-org-langpack-th_th
  • redhat-upgrade-openoffice-org-langpack-tn_za
  • redhat-upgrade-openoffice-org-langpack-tr_tr
  • redhat-upgrade-openoffice-org-langpack-ts_za
  • redhat-upgrade-openoffice-org-langpack-ur
  • redhat-upgrade-openoffice-org-langpack-ve_za
  • redhat-upgrade-openoffice-org-langpack-xh_za
  • redhat-upgrade-openoffice-org-langpack-zh_cn
  • redhat-upgrade-openoffice-org-langpack-zh_tw
  • redhat-upgrade-openoffice-org-langpack-zu_za
  • redhat-upgrade-openoffice-org-libs
  • redhat-upgrade-openoffice-org-math
  • redhat-upgrade-openoffice-org-pyuno
  • redhat-upgrade-openoffice-org-sdk
  • redhat-upgrade-openoffice-org-sdk-doc
  • redhat-upgrade-openoffice-org-testtools
  • redhat-upgrade-openoffice-org-writer
  • redhat-upgrade-openoffice-org-xsltfilter
  • redhat-upgrade-openoffice-org2-base
  • redhat-upgrade-openoffice-org2-calc
  • redhat-upgrade-openoffice-org2-core
  • redhat-upgrade-openoffice-org2-draw
  • redhat-upgrade-openoffice-org2-emailmerge
  • redhat-upgrade-openoffice-org2-graphicfilter
  • redhat-upgrade-openoffice-org2-impress
  • redhat-upgrade-openoffice-org2-javafilter
  • redhat-upgrade-openoffice-org2-langpack-af_za
  • redhat-upgrade-openoffice-org2-langpack-ar
  • redhat-upgrade-openoffice-org2-langpack-bg_bg
  • redhat-upgrade-openoffice-org2-langpack-bn
  • redhat-upgrade-openoffice-org2-langpack-ca_es
  • redhat-upgrade-openoffice-org2-langpack-cs_cz
  • redhat-upgrade-openoffice-org2-langpack-cy_gb
  • redhat-upgrade-openoffice-org2-langpack-da_dk
  • redhat-upgrade-openoffice-org2-langpack-de
  • redhat-upgrade-openoffice-org2-langpack-el_gr
  • redhat-upgrade-openoffice-org2-langpack-es
  • redhat-upgrade-openoffice-org2-langpack-et_ee
  • redhat-upgrade-openoffice-org2-langpack-eu_es
  • redhat-upgrade-openoffice-org2-langpack-fi_fi
  • redhat-upgrade-openoffice-org2-langpack-fr
  • redhat-upgrade-openoffice-org2-langpack-ga_ie
  • redhat-upgrade-openoffice-org2-langpack-gl_es
  • redhat-upgrade-openoffice-org2-langpack-gu_in
  • redhat-upgrade-openoffice-org2-langpack-he_il
  • redhat-upgrade-openoffice-org2-langpack-hi_in
  • redhat-upgrade-openoffice-org2-langpack-hr_hr
  • redhat-upgrade-openoffice-org2-langpack-hu_hu
  • redhat-upgrade-openoffice-org2-langpack-it
  • redhat-upgrade-openoffice-org2-langpack-ja_jp
  • redhat-upgrade-openoffice-org2-langpack-ko_kr
  • redhat-upgrade-openoffice-org2-langpack-lt_lt
  • redhat-upgrade-openoffice-org2-langpack-ms_my
  • redhat-upgrade-openoffice-org2-langpack-nb_no
  • redhat-upgrade-openoffice-org2-langpack-nl
  • redhat-upgrade-openoffice-org2-langpack-nn_no
  • redhat-upgrade-openoffice-org2-langpack-pa_in
  • redhat-upgrade-openoffice-org2-langpack-pl_pl
  • redhat-upgrade-openoffice-org2-langpack-pt_br
  • redhat-upgrade-openoffice-org2-langpack-pt_pt
  • redhat-upgrade-openoffice-org2-langpack-ru
  • redhat-upgrade-openoffice-org2-langpack-sk_sk
  • redhat-upgrade-openoffice-org2-langpack-sl_si
  • redhat-upgrade-openoffice-org2-langpack-sr_cs
  • redhat-upgrade-openoffice-org2-langpack-sv
  • redhat-upgrade-openoffice-org2-langpack-ta_in
  • redhat-upgrade-openoffice-org2-langpack-th_th
  • redhat-upgrade-openoffice-org2-langpack-tr_tr
  • redhat-upgrade-openoffice-org2-langpack-zh_cn
  • redhat-upgrade-openoffice-org2-langpack-zh_tw
  • redhat-upgrade-openoffice-org2-langpack-zu_za
  • redhat-upgrade-openoffice-org2-math
  • redhat-upgrade-openoffice-org2-pyuno
  • redhat-upgrade-openoffice-org2-testtools
  • redhat-upgrade-openoffice-org2-writer
  • redhat-upgrade-openoffice-org2-xsltfilter

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;