Thursday, June 12, 2008

Vulnerability In OpenOffice.org Software

There's been found a vulnerability in OpenOffice.org software file handling. Vulnerability may allow a remote unprivileged user who provides a OpenOffice.org document that is opened by a local user to execute arbitrary commands on the system with the privileges of the user running OpenOffice.org.

Vulnerable are OpenOffice.org versions between 2.0 and 2.4. Users of these versions are instructed to update their software to version 2.4.1.

More information here.

No comments: