LibreOffice Macro Code Execution

It was found that libreoffice before versions 6.0.7 and 6.1.3 was vulnerable to a directory traversal attack which could be used to execute arbitrary macros bundled with a document. An attacker could craft a document, which when opened by LibreOffice, would execute a Python method from a script i...

Mandriva Linux Security Advisory : openoffice.org (MDVSA-2010:221)

Multiple vulnerabilities was discovered and corrected in the OpenOffice.org : Integer overflow allows remote attackers to execute arbitrary code via a crafted XPM file that triggers a heap-based buffer overflow CVE-2009-2949. Heap-based buffer overflow allows remote attackers to cause a denial of...

CentOS 5 : openoffice.org (CESA-2010:0459)

Updated openoffice.org packages that fix one security issue are now available for Red Hat Enterprise Linux 4 and 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

Code injection

OpenOffice.org 2.x and 3.0 before 3.2.1 allows user-assisted remote attackers to bypass Python macro security restrictions and execute arbitrary Python code via a crafted OpenDocument Text ODT file that triggers code execution when the macro directory structure is previewed...

DSA-2055-1 openoffice.org - arbitrary code execution

Bulletin has no description...