CVE-2002-2210

Description

The installation of OpenOffice 1.0.1 allows local users to overwrite files and possibly gain privileges via a symlink attack on the USERNAME_autoresponse.conf temporary file.

Affected products

• openoffice / openoffice1.0.1 – 1.0.1

References

• MISChttp://www.iss.net/security_center/static/10346.php
• MISChttp://www.securityfocus.com/bid/5950
• MISChttp://archives.neohapsis.com/archives/bugtraq/2002-10/0161.html