CVE-2008-4937
Published: 5 November 2008
senddoc in OpenOffice.org (OOo) 2.4.1 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/log.obr.##### temporary file.
Notes
Author | Note |
---|---|
jdstrand | affected code not present in Ubuntu 6.06 LTS and 7.10 |
Priority
Status
Package | Release | Status |
---|---|---|
openoffice.org Launchpad, Ubuntu, Debian |
dapper |
Not vulnerable
|
gutsy |
Not vulnerable
|
|
hardy |
Released
(1:2.4.1-1ubuntu2.1)
|
|
intrepid |
Not vulnerable
(1:2.4.1-11ubuntu2)
|
|
upstream |
Released
(1:2.4.1-8)
|