OpenOffice Security Fixes
Last Updated: 2011-01-28 13:04:20 UTC
by Guy Bruneau (Version: 1)
OpenOffice.org has released several security bulletins affecting various components of OpenOffice. Some of these security issues may allow remote unprivileged user to execute arbitrary code.
The following CVEs have been assigned to the list of issues affecting OpenOffice:
CVE-2010-2935 CVE-2010-2936 CVE-2010-3450 CVE-2010-3451 CVE-2010-3452 CVE-2010-3453 CVE-2010-3454 CVE-2010-3689 CVE-2010-3702 CVE-2010-3704 CVE-2010-4008 CVE-2010-4253 CVE-2010-4494 CVE-2010-4643
The following versions are affected by these bulletins:
- All versions of OpenOffice.org 3 prior to version 3.3
- All versions of OpenOffice.org 2
- OpenOffice.org stated that earlier versions of OpenOffice.org are no longer supported and will not be evaluated regarding this issue.
All the bulletins are posted here.
Guy Bruneau IPSS Inc. gbruneau at isc dot sans dot org