incubator-ooo-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Ariel Constenla-Haile <arie...@apache.org>
Subject Re: CVE-2012-0037: OpenOffice.org data leakage vulnerability
Date Sun, 29 Apr 2012 21:15:16 GMT
On Sun, Apr 29, 2012 at 05:11:30PM -0400, Rob Weir wrote:
> >> > I am not sure if anyone has been able to reproduce the issue on Linux
> >> > with OOo 3.3. May be we can give you the file to test it, it would be
> >> > nice to have someone else testing it. If someone knows we are able to do
> >> > so, please let us know.
> >> >
> >>
> >> Absolutely not.  The test exploit file must *not* be shared.
> >
> > That's what I guessed. So how will we proceed? I couldn't reproduce the
> > exploit in any of the three distros I tried, OOo 3.3 only crashes but
> > does not exploit as expected.
> >
> 
> This the kind of thing we should probably discuss on the ooo-security list.

Ok, I'll move the discussion there.


Regard
Regardss
-- 
Ariel Constenla-Haile
La Plata, Argentina

Mime
View raw message