4 X Security Team: Sun plugs holes in StarOffice

Sun plugs holes in StarOffice

Monday, November 24, 2008 by Mzer0 Arbitrary Code Execution , Browsers , Data theft , Exploit , Linux , Open Source , Passwords , Pen testing , Sun Microsystems

Sun plugs holes in StarOffice Two weeks after the OpenOffice.org team shipped patches for code execution flaws in office suite, Sun Micrososystems has followed up with a high-priority update for StarOffice, which is based on the open-source code.

Sun’s patch, available for Windows, Linux and Solaris, address highly-critical vulnerabilities that could expose users to arbitrary code execution attacks via specially crafted image files.

[ SEE: Code execution flaws haunt OpenOffice ]

As previously reported, the vulnerabilities could be exploited via manipulated WMF and EMF files in StarOffice or StarSuite documents.

OpenOffice.org described the bugs as file-handling heap overflows. Patches are available in OpenOffice 2.4.2.

[Source: zdnet]

0 comments

Available Feeds

Entries RSS
Comments RSS

4 X Security Team

Sun plugs holes in StarOffice

0 comments

Available Feeds

Blog Archive

Categories

Sophos latest virus alerts

milw0rm.com

SecurityFocus Vulnerabilities

SecuriTeam.com

SecWatch - Latest Security Advisories

SecWatch - Latest Exploit Alerts

FrSIRT Security Advisories

FrSIRT Linux Security Advisories

Latest Secunia Security Watchdog Blog Entries

Acunetix Web Applications Vulnerabilities Listing