Lucene search
HistoryJan 09, 2006 - 11:00 p.m.
CVE-2005-4636
openoffice.org
cve-2005-4636
security settings
bypass
hyperlink dialog
4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
6.5 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
21.0%
OpenOffice.org 2.0 and earlier, when hyperlinks has been disabled, does not prevent the user from clicking the WWW-browser button in the Hyperlink dialog, which makes it easier for attackers to trick the user into bypassing intended security settings.
Affected configurations
Node
openofficeopenofficeMatch1.0.1
ORopenofficeopenofficeMatch1.0.2
ORopenofficeopenofficeMatch1.1.0
ORopenofficeopenofficeMatch1.1.1
ORopenofficeopenofficeMatch1.1.2
ORopenofficeopenofficeMatch1.1.3
ORopenofficeopenofficeMatch1.1.4
ORopenofficeopenofficeMatch1.1.5
ORopenofficeopenofficeMatch2.0
Related
nessus
nessus
Mandrake Linux Security Advisory : OpenOffice.org (MDKSA-2006:033)
2006-02-05 00:00:00
ubuntucve
ubuntucve
CVE-2005-4636
2005-12-31 00:00:00
redhatcve
redhatcve
CVE-2005-4636
2015-10-30 10:07:53
cvelist
cvelist
CVE-2005-4636
2006-01-09 23:00:00
nvd
nvd
CVE-2005-4636
2005-12-31 05:00:00
4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
6.5 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
21.0%
Related for CVE-2005-4636