Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (c) 2008 E-Soft Inc. http://www.securityspace.comOPENVAS:60443
HistoryFeb 28, 2008 - 12:00 a.m.

Debian Security Advisory DSA 1509-1 (koffice)

2008-02-2800:00:00
Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com
plugins.openvas.org
7

0.334 Low

EPSS

Percentile

97.1%

JSON

The remote host is missing an update to koffice
announced via advisory DSA 1509-1.

# OpenVAS Vulnerability Test
# $Id: deb_1509_1.nasl 6616 2017-07-07 12:10:49Z cfischer $
# Description: Auto-generated from advisory DSA 1509-1 (koffice)
#
# Authors:
# Thomas Reinke <[email protected]>
#
# Copyright:
# Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com
# Text descriptions are largely excerpted from the referenced
# advisory, and are Copyright (c) the respective author(s)
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2,
# as published by the Free Software Foundation
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
#

include("revisions-lib.inc");
tag_insight = "Several vulnerabilities have been discovered in xpdf code that is
embedded in koffice, an integrated office suite for KDE.  These flaws
could allow an attacker to execute arbitrary code by inducing the user
to import a specially crafted PDF document.

The Common Vulnerabilities and Exposures project identifies the
following problems:

CVE-2007-4352

Array index error in the DCTStream::readProgressiveDataUnit method in
xpdf/Stream.cc in Xpdf 3.02pl1, as used in poppler, teTeX, KDE, KOffice,
CUPS, and other products, allows remote attackers to trigger memory
corruption and execute arbitrary code via a crafted PDF file.

CVE-2007-5392

Integer overflow in the DCTStream::reset method in xpdf/Stream.cc in
Xpdf 3.02p11 allows remote attackers to execute arbitrary code via a
crafted PDF file, resulting in a heap-based buffer overflow.

CVE-2007-5393

Heap-based buffer overflow in the CCITTFaxStream::lookChar method in
xpdf/Stream.cc in Xpdf 3.02p11 allows remote attackers to execute
arbitrary code via a PDF file that contains a crafted CCITTFaxDecode
filter.

For the stable distribution (etch), these problems have been fixed in version
1:1.6.1-2etch2.

Updates for the old stable distribution (sarge), will be made available
as soon as possible.

We recommend that you upgrade your koffice package.";
tag_summary = "The remote host is missing an update to koffice
announced via advisory DSA 1509-1.";

tag_solution = "https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201509-1";


if(description)
{
 script_id(60443);
 script_version("$Revision: 6616 $");
 script_tag(name:"last_modification", value:"$Date: 2017-07-07 14:10:49 +0200 (Fri, 07 Jul 2017) $");
 script_tag(name:"creation_date", value:"2008-02-28 02:09:28 +0100 (Thu, 28 Feb 2008)");
 script_cve_id("CVE-2007-4352", "CVE-2007-5392", "CVE-2007-5393");
 script_tag(name:"cvss_base", value:"9.3");
 script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:C/I:C/A:C");
 script_name("Debian Security Advisory DSA 1509-1 (koffice)");



 script_category(ACT_GATHER_INFO);

 script_copyright("Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com");
 script_family("Debian Local Security Checks");
 script_dependencies("gather-package-list.nasl");
 script_mandatory_keys("ssh/login/debian_linux", "ssh/login/packages");
 script_tag(name : "solution" , value : tag_solution);
 script_tag(name : "insight" , value : tag_insight);
 script_tag(name : "summary" , value : tag_summary);
 script_tag(name:"qod_type", value:"package");
 script_tag(name:"solution_type", value:"VendorFix");
 exit(0);
}

#
# The script code starts here
#

include("pkg-lib-deb.inc");

res = "";
report = "";
if ((res = isdpkgvuln(pkg:"koffice-data", ver:"1.6.1-2etch2", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"kword-data", ver:"1.6.1-2etch2", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"kivio-data", ver:"1.6.1-2etch2", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"koffice-doc", ver:"1.6.1-2etch2", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"koffice-doc-html", ver:"1.6.1-2etch2", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"koffice", ver:"1.6.1-2etch2", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"kpresenter-data", ver:"1.6.1-2etch2", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"krita-data", ver:"1.6.1-2etch2", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"koffice-dbg", ver:"1.6.1-2etch2", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"kword", ver:"1.6.1-2etch2", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"kexi", ver:"1.6.1-2etch2", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"koffice-dev", ver:"1.6.1-2etch2", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"karbon", ver:"1.6.1-2etch2", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"koshell", ver:"1.6.1-2etch2", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"kspread", ver:"1.6.1-2etch2", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"kivio", ver:"1.6.1-2etch2", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"kplato", ver:"1.6.1-2etch2", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"kugar", ver:"1.6.1-2etch2", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"kchart", ver:"1.6.1-2etch2", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"krita", ver:"1.6.1-2etch2", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"kpresenter", ver:"1.6.1-2etch2", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"kthesaurus", ver:"1.6.1-2etch2", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"koffice-libs", ver:"1.6.1-2etch2", rls:"DEB4.0")) != NULL) {
    report += res;
}
if ((res = isdpkgvuln(pkg:"kformula", ver:"1.6.1-2etch2", rls:"DEB4.0")) != NULL) {
    report += res;
}

if (report != "") {
    security_message(data:report);
} else if (__pkg_match) {
    exit(99); # Not vulnerable.
}

Related

debian 5
openvas 86
fedora 25
nessus 55
redhat 7
oraclelinux 4
centos 5
suse 1
osv 3
securityvulns 2
ubuntu 2
gentoo 1
freebsd 1
altlinux 1
slackware 1
debian
debian
[SECURITY] [DSA 1509-1] New koffice packages fix multiple vulnerabilities
2008-02-25 23:14:40
[SECURITY] [DSA 1537-1] New xpdf packages fix multiple vulnerabilities
2008-04-02 21:25:32
[SECURITY] [DSA 1480-1] New poppler packages fix several vulnerabilities
2008-02-05 17:13:47
openvas
openvas
Fedora Update for kdetoys FEDORA-2007-2985
2009-02-27 00:00:00
Fedora Update for kdebindings FEDORA-2007-2985
2009-02-27 00:00:00
Fedora Update for kdeadmin FEDORA-2007-2985
2009-02-27 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: kde-i18n-3.5.8-1.fc7
2007-11-13 00:05:02
[SECURITY] Fedora 8 Update: xpdf-3.02-4.fc8
2007-11-09 23:41:42
[SECURITY] Fedora 7 Update: kdenetwork-3.5.8-6.fc7
2007-11-13 00:05:02
nessus
nessus
Fedora 8 : kdegraphics-3.5.8-7.fc8 (2007-3001)
2007-11-12 00:00:00
RHEL 4 : gpdf (RHSA-2007:1025)
2009-04-23 00:00:00
Mandrake Linux Security Advisory : cups (MDKSA-2007:228)
2007-11-20 00:00:00
redhat
redhat
(RHSA-2007:1025) Important: gpdf security update
2007-11-07 00:00:00
(RHSA-2007:1021) Important: cups security update
2007-11-07 00:00:00
(RHSA-2007:1026) Important: poppler security update
2007-11-07 00:00:00
oraclelinux
oraclelinux
Important: poppler security update
2007-11-23 00:00:00
Important: xpdf security update
2007-11-07 00:00:00
Important: kdegraphics security update
2007-11-12 00:00:00
centos
centos
gpdf security update
2007-11-07 19:57:28
kdegraphics security update
2007-11-12 16:32:18
xpdf security update
2007-11-07 19:58:17
suse
suse
remote code execution in xpdf, kdegraphics3-pdf, koffice, libextractor,
2007-11-14 16:50:40
osv
osv
koffice - multiple vulnerabilities
2008-02-25 00:00:00
poppler - several vulnerabilities
2008-02-05 00:00:00
xpdf
2008-04-02 00:00:00
securityvulns
securityvulns
Xpdf multiple security vulnerabilities
2007-11-08 00:00:00
Secunia Research: Xpdf &quot;Stream.cc&quot; Multiple Vulnerabilities
2007-11-08 00:00:00
ubuntu
ubuntu
poppler vulnerabilities
2007-11-14 00:00:00
KOffice vulnerabilities
2007-11-15 00:00:00
gentoo
gentoo
Poppler, KDE: User-assisted execution of arbitrary code
2007-11-18 00:00:00
freebsd
freebsd
xpdf -- multiple remote Stream.CC vulnerabilities
2007-11-07 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 5 package xpdf version 3.02-alt3
2007-11-12 00:00:00
slackware
slackware
[slackware-security] xpdf/poppler/koffice/kdegraphics
2007-11-12 09:06:02

0.334 Low

EPSS

Percentile

97.1%

JSON
Related for OPENVAS:60443
debian5openvas86fedora25nessus55redhat7oraclelinux4centos5suse1osv3securityvulns2ubuntu2gentoo1freebsd1altlinux1slackware1