Rapid7 Vulnerability & Exploit Database

SUSE Linux Security Vulnerability: CVE-2009-2139

Free InsightVM Trial No credit card necessary
Watch Demo See how it all works
Back to Search

SUSE Linux Security Vulnerability: CVE-2009-2139

Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
09/08/2009
Created
07/25/2018
Added
12/12/2013
Modified
07/04/2017

Description

Heap-based buffer overflow in svtools/source/filter.vcl/wmf/enhwmf.cxx in Go-oo 2.x and 3.x before 3.0.1, previously named ooo-build and related to OpenOffice.org (OOo), allows remote attackers to execute arbitrary code via a crafted EMF file, a similar issue to CVE-2008-2238.

Solution(s)

  • suse-upgrade-openoffice_org
  • suse-upgrade-openoffice_org-base
  • suse-upgrade-openoffice_org-branding-upstream
  • suse-upgrade-openoffice_org-calc
  • suse-upgrade-openoffice_org-cs
  • suse-upgrade-openoffice_org-de
  • suse-upgrade-openoffice_org-devel
  • suse-upgrade-openoffice_org-draw
  • suse-upgrade-openoffice_org-es
  • suse-upgrade-openoffice_org-filters
  • suse-upgrade-openoffice_org-fr
  • suse-upgrade-openoffice_org-galleries
  • suse-upgrade-openoffice_org-gnome
  • suse-upgrade-openoffice_org-hu
  • suse-upgrade-openoffice_org-icon-themes-prebuilt
  • suse-upgrade-openoffice_org-impress
  • suse-upgrade-openoffice_org-it
  • suse-upgrade-openoffice_org-ja
  • suse-upgrade-openoffice_org-kde
  • suse-upgrade-openoffice_org-mailmerge
  • suse-upgrade-openoffice_org-math
  • suse-upgrade-openoffice_org-mono
  • suse-upgrade-openoffice_org-officebean
  • suse-upgrade-openoffice_org-pl
  • suse-upgrade-openoffice_org-pt-br
  • suse-upgrade-openoffice_org-pyuno
  • suse-upgrade-openoffice_org-sdk
  • suse-upgrade-openoffice_org-sdk-doc
  • suse-upgrade-openoffice_org-sk
  • suse-upgrade-openoffice_org-testtool
  • suse-upgrade-openoffice_org-writer
  • suse-upgrade-openoffice_org-zh-cn
  • suse-upgrade-openoffice_org-zh-tw

References

insightVM

Advanced vulnerability management analytics and reporting.
Key Features
Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;