FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

openoffice -- document disclosure

Affected packages
ar-openoffice < 1.1.2_1
2.0 <= ar-openoffice
ca-openoffice < 1.1.2_1
2.0 <= ca-openoffice
cs-openoffice < 1.1.2_1
2.0 <= cs-openoffice
de-openoffice < 1.1.2_1
2.0 <= de-openoffice
dk-openoffice < 1.1.2_1
2.0 <= dk-openoffice
el-openoffice < 1.1.2_1
2.0 <= el-openoffice
es-openoffice < 1.1.2_1
2.0 <= es-openoffice
et-openoffice < 1.1.2_1
2.0 <= et-openoffice
fi-openoffice < 1.1.2_1
2.0 <= fi-openoffice
fr-openoffice < 1.1.2_1
2.0 <= fr-openoffice
gr-openoffice < 1.1.2_1
2.0 <= gr-openoffice
hu-openoffice < 1.1.2_1
2.0 <= hu-openoffice
it-openoffice < 1.1.2_1
2.0 <= it-openoffice
ja-openoffice < 1.1.2_1
2.0 <= ja-openoffice
ko-openoffice < 1.1.2_1
2.0 <= ko-openoffice
nl-openoffice < 1.1.2_1
2.0 <= nl-openoffice
openoffice < 1.1.2_1
2.0 <= openoffice
pl-openoffice < 1.1.2_1
2.0 <= pl-openoffice
pt-openoffice < 1.1.2_1
2.0 <= pt-openoffice
pt_BR-openoffice < 1.1.2_1
2.0 <= pt_BR-openoffice
ru-openoffice < 1.1.2_1
2.0 <= ru-openoffice
se-openoffice < 1.1.2_1
2.0 <= se-openoffice
sk-openoffice < 1.1.2_1
2.0 <= sk-openoffice
sl-openoffice-SI < 1.1.2_1
2.0 <= sl-openoffice-SI
tr-openoffice < 1.1.2_1
2.0 <= tr-openoffice
zh-openoffice-CN < 1.1.2_1
2.0 <= zh-openoffice-CN
zh-openoffice-TW < 1.1.2_1
2.0 <= zh-openoffice-TW

Details

VuXML ID c62dc69f-05c8-11d9-b45d-000c41e2cdad
Discovery 2004-08-24
Entry 2004-09-14

OpenOffice creates a working directory in /tmp on startup, and uses this directory to temporarily store document content. However, the permissions of the created directory may allow other user on the system to read these files, potentially exposing information the user likely assumed was inaccessible.

References

CVE Name CVE-2004-0752
Message 20040910152759.7739.qmail@www.securityfocus.com
URL http://securitytracker.com/alerts/2004/Sep/1011205.html
URL http://www.openoffice.org/issues/show_bug.cgi?id=33357