Go to the Softpedia homepage


NEWS CATEGORIES:



NEWS ARCHIVE >>
SOFTPEDIA REVIEWS >>
Home / News / Security

Security

OpenOffice Highly Critical Vulnerability

New flaw discovered in the Microsoft Office alternative

By Bogdan Popa, Security and Search Engines Editor

4th of January 2007, 10:52 GMT

Adjust text size:


OpenOffice is an office suite and it is often presented as the perfect alternative for the expensive product developed by Microsoft Office. OpenOffice offers a greater number of advantages than the giant's solution, being available under an open-source license while providing the same features as Microsoft's tool. The office suite is available for multiple platforms including Windows, Mac and multiple Linux distributions and can be downloaded for free from the official webpage.

Because many of you are currently using OpenOffice,
you should know that the company identified a vulnerability that can allow an attacker to execute malicious code and compromise your system. Security software Secunia rated the flaw as highly critical and said that after a successful exploitation of the vulnerability, an attacker can execute malicious code to control an affected computer.

"A vulnerability has been reported in OpenOffice, which potentially can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to integer overflows within the processor for WMF/EMF files. This can be exploited to cause a heap-based buffer overflow by e.g. tricking a user into opening a specially crafted WMF/EMF file. Successful exploitation may allow the execution of arbitrary code," Secunia said.

The developer of the OpenOffice suite confirmed the issue and also added that the vulnerability affects all platforms that can run the application and concerns only the versions before 2.1. The fix was already released and it is available here or you can protect your system by installing the latest version of the application (currently 2.1).

If you want to download the newest version for the OpenOffice suite, you can find it available as a free download on Softpedia or on the official website of the product.


Rating:
Good (3.5/5) 9 vote(s) so far    

Read by 574 user(s) | Add comment | Link to this article
Subscribe to news | Print article | Send to friend

© Copyright 2001-2008 Softpedia
Contact:

 

 

SEARCH THE NEWS ARCHIVE :




Today's News | Yesterday's News | News Archive


MORE RELATED ARTICLES:


CRITICAL Vulnerability in Adobe Download Manager

Intel LAN Driver Vulnerability

The Third Exploit for Microsoft Word Vulnerability

The Coordinates of an MS Word Attack

Merry Vista Vulnerability!

User opinions:

No user comments yet.
Be the first to express your opinion using the form below!

Share your opinion:

Your Name:
Your Email Address:
(will not be used for commercial purposes)
Solve this to prove you're not a bot: =
Your review/opinion:

 






SUBMIT PROGRAM   |   ADVERTISE   |   GET HELP   |   SEND US FEEDBACK   |   RSS FEEDS   |   ENTER NEWS SITE   |   ENGLISH BOARD   |   ROMANIAN FORUM
© 2001 - 2008 Softpedia. All rights reserved.
Softpedia™ and the Softpedia™ logo are registered trademarks of SoftNews NET SRL.		 Copyright Information | Privacy Policy | Terms of Use | Update your software | Archive