CVE-2010-0395

Priority
Description
OpenOffice.org 2.x and 3.0 before 3.2.1 allows user-assisted remote
attackers to bypass Python macro security restrictions and execute
arbitrary Python code via a crafted OpenDocument Text (ODT) file that
triggers code execution when the macro directory structure is previewed.
Ubuntu-Description
Marc Schoenefeld discovered that OpenOffice.org would run document macros
from the macro browser, even when macros were disabled. If a user were
tricked into opening a specially crafted document and examining a macro,
a remote attacker could execute arbitrary code with user privileges.
Notes
Package
Upstream:released (3.2.1)
More Information

Updated: 2019-12-05 20:54:35 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)