Urges users to patch or upgrade...
Published: 8 January 2007 10:32 GMT
OpenOffice.org has patched a critical vulnerability in the open source application suite.
The vulnerability concerns the way OpenOffice handles '.wmf' images. Exploitation of the vulnerability, which affects all but the newest version of OpenOffice, can enable a hacker to perform a buffer overflow and then introduce malicious code to the victim's PC.
Security advisor Secunia rates the vulnerability as "highly critical", and has urged users to patch their systems.
OpenOffice has uploaded the patch to its website. Users must manually install the file in place of its vulnerable predecessor, or upgrade to the latest version of the software, OpenOffice 2.1. Open source suppliers such as Red Hat have followed suit by releasing their own patches.
OpenOffice has become increasingly popular as a free alternative to Microsoft's Office suite. It contains all the standard business applications, including word processing, database and spreadsheet programmes.
Although this is the first '.wmf' vulnerability to hit OpenOffice, such flaws have previously affected Windows.
In early 2006, Microsoft acknowledged a critical weakness in the way Windows renders '.wmf' files, leading to the company releasing patches out of cycle. The UK parliament was attacked at the time using the vulnerability.
Richard Thurston writes for ZDNet UK
Can you post the URL where this patch can be downl...
Reader
This article seems to refer to a patch, albeit ref...
Chris Wynne
Well according to the article OpenOffice have made...
Jeremy Perkins
XEN, Vmware Virtualization Management of PF Sense Firewalls with Failover Setups Clustered File Systems (GFS,LVM) Puppet, CF Engine System Management ...
As Senior sysadmin, your duties will include: - Installation, monitoring and maintenance across the global server infrastructure (UNIX) - Maintenance ...
Oracle e-business patches on servers, make changes to database components, assist with troubleshooting as required and create detailed installation ...
Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Is Your Enterprise Architected for Tomorrow's Growth?
Improving IT service delivery through an integrated approach to software asset management...
TechRepublic Resource Guide: Software as a Service (SaaS) for Small and Midsize Businesses...
Download a Free Trial of SmartDraw: Learn why SmartDraw is the ideal alternative...
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Digg
Slashdot
Del.icio.us
Stumble
Reddit
RSS Feeds
Clive Longbottom Windows 7: Not perfect - but ready for prime time Microsoft's latest OS fixes most of Vista's ills - but still has challenges ahead
Stephen Kleynhans Mind the details with Windows 7 Just because it might work better than Vista, it doesn't mean you can be sloppy