Language Selection

English French German Italian Portuguese Spanish

OpenOffice TIFF flaw affects Windows, Linux and Mac

Filed under
Security
OOo

Security experts have discovered TIFF-based buffer overflow vulnerabilities in OpenOffice, which could allow attackers to remotely execute code on Linux, Windows or Apple Mac-based computers.

OpenOffice versions 2.0.4 and prior are vulnerable to maliciously crafted TIFF file, which could be delivered in an e-mail attachment, published on a Web site or shared using P2P software. The next version of OpenOffice (version 2.3) arrived on 17 September and is not affected by the flaw.

The vulnerability was discovered by researchers at iDefense, who claim that the OpenOffice TIFF parsing code is flawed.

"At this stage, it's only confirmed on Linux," said Baumhoff.

More Here




More in Tux Machines

Security: Trezor, Kaspersky and Secure [sic] Enclave Processor

Android Leftovers

Linux-loving lecturer 'lost' email, was actually confused by Outlook

ON-CALL Friday means a few things at El Reg: a new BOFH. A couple of beers. And another instalment of On-Call, our weekly column in which we take reader-contributed tales of being asked to do horrible things for horrible people, scrub them up and hope you click. This week, meet “Newt” who a dozen or more years ago worked at a College that “decided to migrate from a Linux system to Microsoft Outlook with an Exchange back end.” Read more

Looks Like Debian GNU/Linux Runs on Quite a Few Mobile Devices, Including Pyra

Debian Project's W. Martin Borgert reports today that work on making the famous and widely-used Debian GNU/Linux operating system run on various mobile devices continues these days. Read more