Red Hat Bugzilla – Bug 450532
CVE-2008-2366 openoffice.org: insecure relative RPATH in OOo 1.1.x packages
Last modified: 2008-06-24 09:06:32 EDT
OpenOffice.org 1.1.x packages as shipped in Red Hat Enterprise Linux 3 and 4
shipped with certain libraries built with insecure RPATH set in the ELF header.
RPATH was incorrectly set to '$ORIGIN' instead of $ORIGIN.
This issue can be exploited by a local user to run arbitrary code as some other
user if victim can be convinced to run openoffice in the attacker controlled
directory with specially crafted content.
This issue was addressed in:
Red Hat Enterprise Linux: