OpenOffice bug hits multiple operating systems

Security experts have discovered vulnerabilities in OpenOffice.org that could allow attackers to remotely execute code on Linux, Windows or Apple Mac-based computers. OpenOffice version 2.0.4 and earlier versions are vulnerable to maliciously crafted TIFF files, which can be delivered in an e-mail attachment, published on a Web site or shared using peer-to-peer software. The next version of OpenOffice (version 2.3) arrived on September 17 and is not affected by the flaw. The vulnerability was discovered by researchers at iDefense, who claim that the OpenOffice TIFF parsing code is flawed.

"When parsing the TIFF directory entries for certain tags, the parser uses untrusted values from the file to calculate the amount of memory to allocate. By providing specially crafted values, an integer overflow occurs in this calculation. This results in the allocation of a buffer of insufficient size, which in turn leads to a heap overflow," the iDefense team reported last Friday. TrustDefender co-founder Andreas Baumhof said: "This vulnerability allows someone to execute malicious code on your computer. It's an OpenOffice bug so it doesn't matter what type of operating system you run; it allows you to run malicious software with the same rights as the user who runs OpenOffice." "At this stage, it's only confirmed on Linux," Baumhof said. "But typically it would affect all operating systems. The only difference with Linux and Windows is that home users typically run Windows as the administrator."

View: Full Story
News source: ZDNet News

Report a problem with article
Previous Story

Neowin at Digital Life 2007: Microsoft's Booth

Next Story

Adobe challenges word on the web

12 Comments

Commenting is disabled on this article.

why cant just update... its not like microsoft or apple patches that instead of fix something it breaks another thing.

The next version of OpenOffice (version 2.3) arrived on September 17 and is not affected by the flaw.

hmm 2.3 is NOT the next version. What happened with 2.1, 2.2, 2.2.1...? Are they vulnerable?
Maybe implying that it's just been fixed in 2.3 makes a "better" article that saying that it was actually fixed almost a year ago?

OpenOffice version 2.0.4 and earlier versions are vulnerable to maliciously crafted TIFF files, which can be delivered in an e-mail attachment, published on a Web site or shared using peer-to-peer software. The next version of OpenOffice (version 2.3) arrived on September 17 and is not affected by the flaw.


Security issues found in Microsoft Windows 2000 and earlier, are vulnerable to maliciously crafted code.... which can be delivered in any email attachment, or published on a web site... even shared through common peer to peer software. Windows Vista arrived in January 2007, and are not affected by the same flaws.

:nuts:


I know.... it's a security bulletin release intended for those still using older versions of their software.... but I just couldn't help myself.

GFree said,
Doesn't matter I'm afraid. The zealots will still argue against Excel despite the issues with OO.

Maybe because this OO issue is fixed, while Excel's is not?