Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-4636

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2005-4636
Last Modified 12 Nov 2009 12:51:24
Published 31 Dec 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-4636

Summary

OpenOffice.org 2.0 and earlier, when hyperlinks has been disabled, does not prevent the user from clicking the WWW-browser button in the Hyperlink dialog, which makes it easier for attackers to trick the user into bypassing intended security settings.

Vulnerable Systems

Application

  • Openoffice 1.0.1

  • Openoffice 1.0.2

  • Openoffice 1.1.0

  • Openoffice 1.1.1

  • Openoffice 1.1.2

  • Openoffice 1.1.3

  • Openoffice 1.1.4

  • Openoffice 1.1.5

  • Openoffice 2.0


References

SECTRACK - 1015419

CONFIRM - http://qa.openoffice.org/issues/show_bug.cgi?id=53491

MANDRIVA - MDKSA-2006:033


Last Updated: 27 May 2016 10:41:22