Invia #2859: CVE-2020-13958 / Code Execution with User Privilges in OpenOffice lower than Version 4.1.8informazioni

TitoloCVE-2020-13958 / Code Execution with User Privilges in OpenOffice lower than Version 4.1.8
DescrizioneA vulnerability in Apache OpenOffice scripting events allows an attacker to construct documents containing hyperlinks pointing to an executable on the target users file system. These hyperlinks can be triggered unconditionally. In fixed versions no internal protocol may be called from the document event handler and other hyperlinks require a control-click.
Fonte⚠️ https://www.openoffice.org/security/cves/CVE-2020-13958.html
Utente
 CSieberg (UID 13359)
Sottomissione13/11/2020 07:56 (6 anni fa)
Moderazione13/11/2020 10:40 (3 hours later)
StatoAccettato
Voce VulDB164908 [Apache OpenOffice fino a 4.1.7 Document cross site scripting]
Punti18

PrecedenteVisione D'ensembleIl prossimo

Do you want to use VulDB in your project?

Use the official API to access entries easily!