CVE-2010-0395

OpenOffice.org 2.x and 3.0 before 3.2.1 allows user-assisted remote attackers to bypass Python macro security restrictions and execute arbitrary Python code via a crafted OpenDocument Text (ODT) file that triggers code execution when the macro directory structure is previewed.

Published: Jun 10, 2010
Updated: Apr 13, 2023
CVE: CVE-2010-0395
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
debian / debian_linux	5.0	5.0.x
fedoraproject / fedora	11	11.x
fedoraproject / fedora	13	13.x
opensuse / opensuse	11.1	11.1.x
canonical / ubuntu_linux	9.04	9.04.x
debian / debian_linux	6.0	6.0.x
opensuse / opensuse	11.0	11.0.x
fedoraproject / fedora	12	12.x
canonical / ubuntu_linux	9.10	9.10.x
opensuse / opensuse	11.2	11.2.x
canonical / ubuntu_linux	8.04	8.04.x
canonical / ubuntu_linux	10.04	10.04.x
suse / linux_enterprise_desktop	11	11.x
suse / linux_enterprise_desktop	10-sp3	10-sp3.x
apache / openoffice	2.0.0	3.2.1

Vulnerability Database

289,697

CVE-2010-0395