OpenOffice.org identifies security vulnerability

By Sarah Stokely on December 6, 2007 at 8:58 AM

OpenOffice.org has identified a highly critical security vulnerability in its open source word processing package OpenOffice 2.3 and prior versions.

In the security advisory OpenOffice.org warned of a security vulnerability in HSQLDB, the default database engine shipped
with OpenOffice.org 2 (all versions) which could allow attackers to execute
arbitrary static Java code by manipulating database documents to be
opened by a user.

OpenOffice.org has asked users to update to version 2.3.1 which is unaffected by the security vulnerability in the previous versions. You can download OpenOffice 2.3.1 here.

Tagged:

au

openoffice

security

word processing

Comments

There are currently no AU comments for this post.

Post Your Comments

Got something to say? There are two ways to comment:

1. Guests

Click here to comment instantly.

2. Facebook Users

Click below to comment using your Facebook account.

We're looking for comments that are interesting, substantial or highly amusing. If your comments are excessively self-promotional, obnoxious, or even worse, boring, you will be banned from commenting. All comments are moderated.