⭐ 欢迎来到虫虫下载站! | 📦 资源下载 📁 资源专辑 ℹ️ 关于我们
⭐ 虫虫下载站
📤 上传资源

📄 deb_1270_1.nasl

📁 漏洞扫描源码,可以扫描linux,windows,交换机路由器
💻 NASL
字号:
🔍 
# OpenVAS Vulnerability Test# $Id$# Description: Auto-generated from advisory DSA 1270-1## Authors:# Thomas Reinke <reinke@securityspace.com>## Copyright:# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com# Text descriptions are largerly excerpted from the referenced# advisory, and are Copyright (c) the respective author(s)## This program is free software; you can redistribute it and/or modify# it under the terms of the GNU General Public License version 2,# as published by the Free Software Foundation## This program is distributed in the hope that it will be useful,# but WITHOUT ANY WARRANTY; without even the implied warranty of# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the# GNU General Public License for more details.## You should have received a copy of the GNU General Public License# along with this program; if not, write to the Free Software# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.#if(description){ script_id(58323); script_cve_id("CVE-2007-0002", "CVE-2007-0238", "CVE-2007-0239"); script_version ("$"); name["english"] = "Debian Security Advisory DSA 1270-1 (openoffice.org)"; script_name(english:name["english"]); desc["english"] = "The remote host is missing an update to openoffice.organnounced via advisory DSA 1270-1.Several security related problems have been discovered inOpenOffice.org, the free office suite.  The Common Vulnerabilities andExposures project identifies the following problems:CVE-2007-0002iDefense reported several integer overflow bugs in libwpd, alibrary for handling WordPerfect documents that is included inOpenOffice.org.  Attackers are able to exploit these withcarefully crafted WordPerfect files that could cause anapplication linked with libwpd to crash or possibly executearbitrary code.CVE-2007-0238Next Generation Security discovered that the StarCalc parser inOpenOffice.org contains an easily exploitable stack overflow thatcould be used exploited by a specially crafted document to executearbitrary code.CVE-2007-0239It has been reported that OpenOffice.org does not escape shellmeta characters and is hence vulnerable to execute arbitrary shellcommands via a specially crafted document after the user clickedto a prepared link.For the stable distribution (sarge) these problems have been fixed inversion 1.1.3-9sarge6.For the testing distribution (etch) these problems have been fixed inversion 2.0.4.dfsg.2-6.For the unstable distribution (sid) these problems have been fixed inversion 2.0.4.dfsg.2-6.We recommend that you upgrade your OpenOffice.org packages.Solution:https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201270-1Risk factor : High"; script_description(english:desc["english"]); summary["english"] = "Debian Security Advisory DSA 1270-1 (openoffice.org)"; script_summary(english:summary["english"]); script_category(ACT_GATHER_INFO); script_copyright(english:"Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com"); family["english"] = "Debian Local Security Checks"; script_family(english:family["english"]); script_dependencies("gather-package-list.nasl"); script_require_keys("ssh/login/packages"); exit(0);}## The script code starts here#include("revisions-lib.inc");include("pkg-lib-deb.inc");vuln = 0;if(isdpkgvuln(pkg:"openoffice.org-l10n-af", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-ar", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-ca", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-cs", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-cy", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-da", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-de", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-el", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-en", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-es", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-et", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-eu", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-fi", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-fr", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-gl", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-he", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-hi", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-hu", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-it", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-ja", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-kn", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-ko", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-lt", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-nb", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-nl", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-nn", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-ns", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-pl", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-pt-br", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-pt", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-ru", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-sk", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-sl", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-sv", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-th", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-tn", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-tr", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-zh-cn", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-zh-tw", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-l10n-zu", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-mimelnk", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-thesaurus-en-us", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"ttf-opensymbol", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-bin", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-dev", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-evolution", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-gtk-gnome", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(isdpkgvuln(pkg:"openoffice.org-kde", ver:"1.1.3-9sarge6", rls:"DEB3.1")) {    vuln = 1;}if(vuln) {    security_hole(0);}

⌨️ 快捷键说明

复制代码 Ctrl + C
搜索代码 Ctrl + F
全屏模式 F11
切换主题 Ctrl + Shift + D
显示快捷键 ?
增大字号 Ctrl + =
减小字号 Ctrl + -