We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message
80,258 News Articles

Critical OpenOffice patches released

Older versions of office suite affected

OpenOffice.org has released two patches that repair older versions of its open-source office productivity suite.

The two vulnerabilities do not affect OpenOffice.org's latest 3.0 version, released earlier this month. Software versions prior to version 2.4.2 are affected.

The first vulnerability concerns Windows Metafile (WMF), an image file format, according to an advisory from OpenOffice.org.

The flaw can be exploited if a specially crafted StarOffice or StarSuite document with a WMF file is opened. StarOffice and StarSuite are office products from Sun Microsystems. A remote user would then have the same access privileges to the PC as the victim and could execute arbitrary code. No working exploit has yet been seen.

The second problem is essentially the same, but involves the Enhanced Metafile (EMF) format, an improved version of WMF used for printing graphics.

Again, if a StarOffice or StarSuite document is opened that maliciously manipulates the EMF format, a remote user could run code on the machine. Openoffice.org is unaware of a working exploit.


IDG UK Sites

Best camera phone of 2015: iPhone 6 Plus vs LG G4 vs Galaxy S6 vs One M9 vs Nexus 6

IDG UK Sites

In defence of BlackBerrys

IDG UK Sites

Why we should reserve judgement on Apple ditching Helvetica in OS X/iOS for the Apple Watch's San...

IDG UK Sites

Retina 3.3GHz iMac 27in preview: Apple cuts £400 of price of Retina iMac with new model