Skip to main content

OpenOffice.org Code Execution and Security Bypass Vulnerabilities

Last Update Date: 28 Jan 2011 Release Date: 8 Jun 2010 5461 Views

RISK: Medium Risk

Two vulnerabilities have been identified in OpenOffice.org, which could be exploited by attackers to bypass security restrictions or compromise a vulnerable system.

1. An error when using the built-in scripting IDE to explore python code, which could allow attackers to execute arbitrary code.

2. An error related to TLS/SSL.


Impact

  • Remote Code Execution
  • Security Restriction Bypass

System / Technologies affected

  • OpenOffice.org versions prior to 3.2.1

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

Upgrade to OpenOffice.org version 3.2.1 :
http://download.openoffice.org/index.html


Vulnerability Identifier


Source


Related Link