In association with heise online

« previous | next »
19 December 2006, 13:23

Exploit for Word also works with OpenOffice

The exploit for the third unpatched security hole in Word reported last week also works in OpenOffice 2.1. If a prepared Word document is opened in OpenOffice Writer under Windows XP SP2, Writer crashes. The dialogue for document recovery then appears. Under Linux, the application also crashes, prompting the message that the main memory is full.

It has not yet, however, been demonstrated that code can be injected via this weak point in OpenOffice. But there are unconfirmed reports that this is possible. In contrast, the hole in Word is reportedly already being actively used to infect systems. In a test, Kaspersky's virus scanner detected the exploit and deleted the file. But not all virus scanners provide protection from such attacks, as a scan for the malicious code at Virustotal showed this week.

image 1 [300 x 216 Pixel @ 56,8 KB]
Not all virus scanners recognize the seven day old exploit. Zoom

Also see:

(ehe)

« previous | next »
Print Version | Send by email | Permalink: http://h-online.com/-732006

Also on The H:

  • Share this article
  • Twitter
  • Facebook
  • digg this
  • submit to slashdot
  • post to delicious
  • StumbleUpon
  • submit to reddit
The H Open Headlines

Price Insight Top 10 powered by Skinflint

  1. Samsung Galaxy S2 i9100 16GB schwarz
  2. Crucial m4 SSD 128GB
  3. Intel Core i5-2500K
  4. TeamGroup Elite DIMM Kit 8GB PC3-10667U CL9-9-9-24 (DDR3-1333)
  5. Intel Core i7-2600K
  6. ASUS EAH6870 DC/2DI2S/1GD5
  7. ASRock Z68 Pro3
  8. Samsung Galaxy S Plus i9001 schwarz 8GB
  9. Samsung EcoGreen F4 2000GB
  10. Samsung Galaxy S i9000 schwarz 8GB

The H

The H open source

The H Security

The H Internet Toolkit