Back to search
CVE-2010-3689
Published: Jan 28, 2011
Modified: Aug 7, 2024
PUBLISHED
Description
soffice in OpenOffice.org (OOo) 3.x before 3.3 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
40775
third-party-advisory
x_refsource_SECUNIA
46031
vdb-entry
x_refsource_BID
DSA-2151
vendor-advisory
x_refsource_DEBIAN
60799
third-party-advisory
x_refsource_SECUNIA
http://www.openoffice.org/security/cves/CVE-2010-3689.html
x_refsource_CONFIRM
http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html
x_refsource_CONFIRM
GLSA-201408-19
vendor-advisory
x_refsource_GENTOO
43065
third-party-advisory
x_refsource_SECUNIA
1025004
vdb-entry
x_refsource_SECTRACK
ADV-2011-0230
vdb-entry
x_refsource_VUPEN
ADV-2011-0232
vdb-entry
x_refsource_VUPEN
RHSA-2011:0182
vendor-advisory
x_refsource_REDHAT
USN-1056-1
vendor-advisory
x_refsource_UBUNTU
ADV-2011-0279
vdb-entry
x_refsource_VUPEN
https://bugzilla.redhat.com/show_bug.cgi?id=641224
x_refsource_CONFIRM
43105
third-party-advisory
x_refsource_SECUNIA
70716
vdb-entry
x_refsource_OSVDB
MDVSA-2011:027
vendor-advisory
x_refsource_MANDRIVA
42999
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now