FLEA-2007-0004-1: openoffice.org

看板Bugtraq作者foresight-s.時間19年前 (2007/03/30 04:48)推噓0(0推 0噓 0→)

留言0則, 0人參與討論串1/1

Foresight Linux Essential Advisory: 2007-0004-1 Published: 2007-03-29 Rating: Moderate Updated Versions: openoffice.org=/conary.rpath.com@rpl:devel//1//foresight.rpath.org@fl:1-devel//1/2.2.0-0.0.5-1 group-dist=/foresight.rpath.org@fl:1-devel//1/1.1-0.11-2 References: https://issues.foresightlinux.org/browse/FL-211 http://www.openoffice.org/security/CVE-2007-0239.html http://www.openoffice.org/security/CVE-2007-0238.html http://www.openoffice.org/security/CVE-2007-2.html Description: Previous versions of openoffice.org were vulnerable to multiple issues which could be exploited to execute arbitrary code at the permission level of the user running openoffice (usually non-root). Attack vectors include coercing a user into opening a URL which contains an exploit, coercing the user into opening a vulnerable WordPerfect file (via bundled libwpd), and coercing a user into opening a vulnerable StarCalc document.

‣ 返回看板[ Bugtraq ] 臭蟲

‣ 更多 foresight-s. 的文章

文章代碼(AID): #1632OV00 (Bugtraq)