https://bz.apache.org/ooo/show_bug.cgi?id=116295
orcmid <[email protected]> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|REOPENED |CONFIRMED Severity|Trivial |Major Latest|4.0.0 |4.1.2 Confirmation in| | --- Comment #8 from orcmid <[email protected]> --- (In reply to Andreas Säger from comment #7) > Quick solution: always prompt for the password. +1 This is a serious defect, even though it takes access to the user's profile to accomplish an exploit. It is inappropriate to increase the threat surface of a PC regardless. -- You are receiving this mail because: You are the assignee for the issue. You are on the CC list for the issue.
