PublicDateAtUSN: 2010-02-16
Candidate: CVE-2010-0136
PublicDate: 2010-02-16 19:30:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-0136
 http://www.debian.org/security/2010/dsa-1995
 https://ubuntu.com/security/notices/USN-903-1
Description:
 OpenOffice.org (OOo) 2.0.4, 2.4.1, and 3.1.1 does not properly enforce
 Visual Basic for Applications (VBA) macro security settings, which allows
 remote attackers to run arbitrary macros via a crafted document.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_openoffice.org:
upstream_openoffice.org: released (3.2)
dapper_openoffice.org: ignored (reached end-of-life)
hardy_openoffice.org: released (1:2.4.1-1ubuntu2.3)
intrepid_openoffice.org: released (1:2.4.1-11ubuntu2.3)
jaunty_openoffice.org: released (1:3.0.1-9ubuntu3.2)
karmic_openoffice.org: released (1:3.1.1-5ubuntu1.1)
devel_openoffice.org: not-affected (1:3.2.0~rc4-1ubuntu1)