The Third Party Vulnerability Resolution Blog covers CVEs and patches in Systems product suite.

Sun Alert 102490 Security Vulnerability With Macros in StarOffice/StarSuite

Guest Author
Product: StarOffice 7 Office Suite, StarOffice 8 Office Suite

A security vulnerability in StarOffice/StarSuite may make it possible to inject basic code into documents which is executed upon loading of the document. The user will not be asked or notified and the macro will have full access to system resources with current user's privileges. As a result, the macro may delete/replace system files, read/send private data and/or cause additional security issues.

Note: Disabling document macros will not prevent this issue.

This issue is also described in CVE CAN-2006-2198 at: http://cve.mitre.org/cgi-bin/cvename.cgi?name=2006-2198

Avoidance: Patch
State: Resolved
First released: 30-Jun-2006

Be the first to comment

Comments ( 0 )
Please enter your name.Please provide a valid email address.Please enter a comment.CAPTCHA challenge response provided was incorrect. Please try again.