Language Selection

English French German Italian Portuguese Spanish

OpenOffice TIFF flaw affects Windows, Linux and Mac

Filed under
Security
OOo

Security experts have discovered TIFF-based buffer overflow vulnerabilities in OpenOffice, which could allow attackers to remotely execute code on Linux, Windows or Apple Mac-based computers.

OpenOffice versions 2.0.4 and prior are vulnerable to maliciously crafted TIFF file, which could be delivered in an e-mail attachment, published on a Web site or shared using P2P software. The next version of OpenOffice (version 2.3) arrived on 17 September and is not affected by the flaw.

The vulnerability was discovered by researchers at iDefense, who claim that the OpenOffice TIFF parsing code is flawed.

"At this stage, it's only confirmed on Linux," said Baumhoff.

More Here




More in Tux Machines

NGINX moves towards web server dominance with European expansion

Web server NGINX powers more than 317 million sites around the globes, and has rapidly replaced Apache as the engine of choice for the world's 100,000 busiest, counting Netflix, Airbnb and Dropbox among its high-profile clients. NGINX Inc - the company set up to commercialise the open source technology - has now set its sights on developing its business in Europe and recently opened a new EMEA headquarters in Cork, Ireland as a launching point to the region. NGINX began life as a web server written by a Russian engineer called Igor Syosev in 2002 while he was working as a system administrator for the portal site Rambler. Read more

Red Hat and Fedora