Flaw could enable unauthorized code to run on a targeted computer
January 04, 2007 (IDG News Service) -- A patch has been released for a vulnerability in the OpenOffice.org productivity suite, a problem rated as "highly critical" by one security vendor.
The flaw could be exploited by creating a malicious file in the Windows Metafile (WMF) or Enhanced Metafile formats. If the file was opened by a user, it could start running unauthorized code on a computer, according to an advisory by Linux distribution vendor Red Hat Inc., which offers the OpenOffice suite with several of its products.
Former Apple engineer patching Month of Apple Bugs-revealed flaws
Fiona Raisbeck Jan 4 2007 14:49
A software engineer has vowed to provide solutions for flaws in Apple's OS X operating system exposed by the Month of Apple Bugs project (MoAB).
The two security researchers behind the project, Kevin Finisterre and a former hacker known as LMH, are revealing bugs in Apple software throughout January, as well as exploit code for any flaws they find.
However, former Apple engineer Landon Fuller has set up an unofficial operation to fix the flaws.
"If I have time, I will attempt to patch the other vulnerabilities, one a day, until the month is out," he said on his blog. "Part brain exercise, part public service, I have created a runtime fix for the first issue using Application Enhancer."