OpenOffice 3.2 fixes several vulnerabilities

Users should upgrade to the latest version of the open-source office suite to avoid trouble

Jeremy Kirk (IDG News Service)
18 February, 2010 04:27
Comments

The latest version of OpenOffice fixes several vulnerabilities that could cause a computer to become compromised by a remote attacker.

OpenOffice.org has issued version 3.2, which adds a lengthy list of new features and improves the suite's overall performance while also fixing six vulnerabilities.

Three of those problems could allow a remote attacker to execute code. In one of those cases, a malicious XPM file -- a type of image format supported by ODF (OpenDocument Format) -- could be maliciously crafted and allow remote user to execute other code on the computer with the same privileges as the local user.

The suite had a similar vulnerability involving the GIF image format, which has also been fixed. The third vulnerability could allow an attacker to take over a PC by getting a user to open a maliciously crafted Microsoft Word document. All three of those vulnerabilities affect all versions of OpenOffice.org prior to version 3.2.

Hackers increasingly look for these three kinds of vulnerabilities, since users can be targeted by e-mail, and various social engineering tricks can be employed to try to get them to open a document. The latest version can be downloaded from OpenOffice.org.

Bookmark this page
Share this article
- facebook
- slashdot
- digg
- Reddit
- stumbleupon
- linkedin
- twitter
Got more on this story? Email Computerworld
Follow Computerworld on twitter

More about: Microsoft, OpenOffice, OpenOffice.org

References show all

Comments

Post new comment

Share
Share this article
- google+
- facebook facebook
- slashdot slashdot
- digg digg
- Reddit Reddit
- stumbleupon stumbleupon
- linkedin linkedin
- twitter twitter
print
email
Bookmark

Related Coverage

Related Whitepapers

Managing IBM License Complexity

IBM provides thousands of products in its portfolio and uses a variety of license models, contract terms and conditions. These license models can be very complex, causing frequent confusion for organisations trying to grasp the concepts while maintaining license compliance. While at first IBM licensing may seem incomprehensible, some education on the license models and licensing scenarios will help minimise the confusion. In addition, a more automated approach to managing licenses enables organisations to gain control, reduce ongoing software costs and minimise license liability risks. Read on.

Featured Download

GNU Image Manipulation Program (GIMP)

When you think Open Source software, you may think of half-baked programs too hard to use, or perhaps lacking power. Well, think again. This Open ...

Zones

Most Popular Whitepapers

Process-Driven Master Data Management for Dummies

We wrote this book to introduce you to the subject of processdriven MDM. It’s a big topic, one that far outstrips the ability of a brief book to cover. However, our hope is that by reading this book you will gain a fundamental understanding of processdriven MDM, how it works, and what it takes to make it a success in your organisation.

Popular tags: Business Management, Security, Data Centre, Storage, Master Data Management

Latest Jobs

FTSAP Basis ConsultantNSW
FTSenior Citrix EngineerNSW
FTSenior Network Engineer - Cisco / Nexus / UCS / - Routing / Switching / WirelessNSW
FTTechnical Services Engineer - ShoreTel/MitelVIC
FTChange Management ProfessionalsNSW
CCOBIEE ConsultantWA
FTSAP Basis ConsultantACT
CCAvaya Engineer - ERS 8600 4.1NSW
CCSystem Engineer - Exchange - CONTRACTSWA
FTSenior Citrix EngineerNSW
CCSAP PM ConsultantNSW
CCSystem Engineer - Lync and Exchange - CONTRACTSWA
CCSAP FICO ConsultantNT
FTProduct Manager Strategist - Enterprise ApplicationsNSW
FTIT Account Manager - System Integrator - Career Progression - Start ImmediatelyNSW
FTSenior Network Field Engineer - Cisco R&S / Wireless SolutionsNSW
FTQM Trainer and ConsultantNSW
FTSenior Network Field Engineer - Cisco R&S / Wireless SolutionsNSW
FTiPhone Developer DeveloperNSW
FTiPhone App DeveloperNSW
FTiPhone App DeveloperNSW
FTIT Service Desk EngineerNSW
FTIT Service Desk EngineerNSW
FTiPhone App DeveloperNSW
CCPC Relocation Technicians - Multiple Roles availableSA

Market Place

OpenOffice 3.2 fixes several vulnerabilities

Comments

Post new comment

Windows Event Viewer phishing scam remains active

Coalition NBN better or worse?

A comparison of Telstra's 4G phones

Which tablet should I buy? iPad 2 vs Sony Tablet S

Bredolab botnet author sentenced to 4 years in prison in Armenia

NBN ISS could pose capacity constraints

NBN service plans won't cost consumers more: Conroy

Microsoft at a loss over Event Viewer scam

Stallman: If you want freedom don't follow Linus Torvalds

CeBIT 2012: Will NBN speed up freight delivery times?

Conroy turns the attack to Hockey

Managing IBM License Complexity

Information Security Policies, Standards and Procedure

Case Study: Svenska Kraftnät safeguards web and ensures communication security with Clearswift

Virtual Certainty - Best Practices for Gaining Monitoring Clarity in VMware Environments

GNU Image Manipulation Program (GIMP)

Avaya Air Cover Zone

Application Lifecycle Management

HP Converged Storage Zone

HP Business Efficiency - Money Payback Guarantee Resource Centre

The Australian Cloud

Process-Driven Master Data Management for Dummies

Business Intelligence Best Practices for Dashboard Design

Learning To Compete: IT’s Next Transformation

Seven Steps to Effective Data Governance

Guidance for Calculation of Efficiency (PUE) in Data Centers

Computerworld newsletter

Don't have an account?

OpenOffice 3.2 fixes several vulnerabilities

Comments

Post new comment

Computerworld newsletter