4.4
CVE-2008-2366
- EPSS 0.32%
- Veröffentlicht 16.06.2008 18:41:00
- Zuletzt bearbeitet 16.06.2026 22:53:38
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
Untrusted search path vulnerability in a certain Red Hat build script for OpenOffice.org (OOo) 1.1.x on Red Hat Enterprise Linux (RHEL) 3 and 4 allows local users to gain privileges via a malicious library in the current working directory, related to incorrect quoting of the ORIGIN symbol for use in the RPATH library path.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Openoffice ≫ Openoffice Version1.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.32% | 0.239 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.4 | 3.4 | 6.4 |
AV:L/AC:M/Au:N/C:P/I:P/A:P
|
http://secunia.com/advisories/30633
http://www.redhat.com/support/errata/RHSA-2008-0538.html
http://securitytracker.com/id?1020278
http://www.securityfocus.com/bid/29695
https://bugzilla.redhat.com/show_bug.cgi?id=450532
https://exchange.xforce.ibmcloud.com/vulnerabilities/43322
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11361