CVE-2010-0395
First published: Tue Mar 16 2010(Updated: )
Marc Schoenefeld found a flaw in the way OpenOffice.org 3.2.0 and earlier, enforced non-executable permission, when browsing macros, written in Python scripting language. If a local user was tricked into opening a specially-crafted OpenDocument Text (ODT) file, containing macros, and previewed the macro directories structure, it could lead to Python macro execution even when macros execution was disabled.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Ubuntu | =8.04 | |
| Ubuntu | =9.04 | |
| Ubuntu | =9.10 | |
| Ubuntu | =10.04 | |
| Debian | =5.0 | |
| Debian | =6.0 | |
| Fedora | =11 | |
| Fedora | =12 | |
| Fedora | =13 | |
| openSUSE | =11.0 | |
| openSUSE | =11.1 | |
| openSUSE | =11.2 | |
| SUSE Linux Enterprise Desktop with Beagle | =10-sp3 | |
| SUSE Linux Enterprise Desktop with Beagle | =11 | |
| Apache OpenOffice | >=2.0.0<3.2.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=412803&action=diff
- https://bugzilla.redhat.com/show_bug.cgi/attachment.cgi?id=412803&action=edit
- http://www.openoffice.org/security/cves/CVE-2010-0395.html
- http://admin.fedoraproject.org/updates/openoffice.org-3.2.0-12.24.fc13
- http://admin.fedoraproject.org/updates/openoffice.org-3.1.1-19.32.fc12
- http://admin.fedoraproject.org/updates/openoffice.org-3.1.1-19.13.fc11
- https://rhn.redhat.com/errata/RHSA-2010-0459.html
- https://bugzilla.redhat.com/show_bug.cgi?id=574119
- http://lists.fedoraproject.org/pipermail/package-announce/2010-June/042468.html
- http://www.vupen.com/english/advisories/2010/1369
- http://ubuntu.com/usn/usn-949-1
- http://secunia.com/advisories/40084
- http://www.vupen.com/english/advisories/2010/1350
- http://secunia.com/advisories/40104
- http://lists.fedoraproject.org/pipermail/package-announce/2010-June/042534.html
- http://secunia.com/advisories/40070
- http://www.vupen.com/english/advisories/2010/1366
- http://www.redhat.com/support/errata/RHSA-2010-0459.html
- http://lists.fedoraproject.org/pipermail/package-announce/2010-June/042529.html
- http://secunia.com/advisories/40107
- http://www.vupen.com/english/advisories/2010/1353
- http://www.debian.org/security/2010/dsa-2055
- http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html
- http://www.us-cert.gov/cas/techalerts/TA10-287A.html
- http://www.mandriva.com/security/advisories?name=MDVSA-2010:221
- http://www.vupen.com/english/advisories/2010/2905
- http://www.gentoo.org/security/en/glsa/glsa-201408-19.xml
- http://secunia.com/advisories/60799
- http://secunia.com/advisories/41818
- http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11091
Frequently Asked Questions
What is the severity of CVE-2010-0395?
CVE-2010-0395 is considered a medium severity vulnerability due to its potential for local privilege escalation.
How do I fix CVE-2010-0395?
To fix CVE-2010-0395, update your OpenOffice.org to version 3.2.1 or later.
Who is affected by CVE-2010-0395?
CVE-2010-0395 affects users of OpenOffice.org 3.2.0 and earlier on various Linux distributions.
What type of vulnerability is CVE-2010-0395?
CVE-2010-0395 is a local privilege escalation vulnerability related to Python scripting in OpenOffice.org.
What action can attackers take using CVE-2010-0395?
Attackers can execute arbitrary code with the privileges of the user opening a malicious OpenDocument Text (ODT) file.
- agent/type
- agent/first-publish-date
- agent/remedy
- agent/severity
- agent/weakness
- agent/author
- agent/references
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2010-0395
- agent/trending
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/canonical
- canonical/ubuntu
- version/ubuntu/8.04
- version/ubuntu/9.04
- version/ubuntu/9.10
- version/ubuntu/10.04
- vendor/debian
- canonical/debian
- version/debian/5.0
- version/debian/6.0
- vendor/fedoraproject
- canonical/fedora
- version/fedora/11
- version/fedora/12
- version/fedora/13
- vendor/opensuse
- canonical/opensuse
- version/opensuse/11.0
- version/opensuse/11.1
- version/opensuse/11.2
- vendor/suse
- canonical/suse linux enterprise desktop with beagle
- version/suse linux enterprise desktop with beagle/10-sp3
- version/suse linux enterprise desktop with beagle/11
- vendor/apache
- canonical/apache openoffice
- version/apache openoffice/2.0.0