OpenOffice.org 1.1.x packages as shipped in Red Hat Enterprise Linux 3 and 4
shipped with certain libraries built with insecure RPATH set in the ELF header.
RPATH was incorrectly set to '$ORIGIN' instead of $ORIGIN.
This issue can be exploited by a local user to run arbitrary code as some other
user if victim can be convinced to run openoffice in the attacker controlled
directory with specially crafted content.
This issue was addressed in:
Red Hat Enterprise Linux: