Security boost in OpenOffice 3.2 update

Hacking vulnerabilities addressed

Article comments

The latest version of OpenOffice fixes several vulnerabilities that could cause a computer to become compromised by a remote attacker.

OpenOffice.org has issued version 3.2, which adds a lengthy list of new features and improves the suite's overall performance while also fixing six vulnerabilities.

Three of those problems could allow a remote attacker to execute code. In one of those cases, a malicious XPM file, a type of image format supported by ODF (OpenDocument Format), could be maliciously crafted and allow remote user to execute other code on the computer with the same privileges as the local user.

The suite had a similar vulnerability involving the GIF image format, which has also been fixed. The third vulnerability could allow an attacker to take over a PC by getting a user to open a maliciously crafted Microsoft Word document. All three of those vulnerabilities affect all versions of OpenOffice.org prior to version 3.2.

Hackers increasingly look for these three kinds of vulnerabilities, since users can be targeted by email, and various social engineering tricks can be employed to try to get them to open a document. The latest version can be downloaded from OpenOffice.org.

Share:

Comments

Advertisement
Send to a friend

Email this article to a friend or colleague:


PLEASE NOTE: Your name is used only to let the recipient know who sent the story, and in case of transmission error. Both your name and the recipient's name and address will not be used for any other purpose.


We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message

ComputerworldUK Knowledge Vault

ComputerworldUK
Share
x
Open
* *