RSS RSS Twitter Twitter
troubleshooting/tutorials/security

06/11/2007, 10:35am, EDT

Monday, June 11th

OpenOffice worm harbors malware, spyware

Symantec has issued a security warning for a new worm afflicting OpenOffice installations on Mac OS X, Linux, and Microsoft Windows systems. The worm, which Symantec rates as a medium risk, is distributed within malicious OpenOffice documents to spread malware as well as spyware. Symantec recommends all OpenOffice users only transfer files from well known sources, and suggests scanning all files with an internet security application before transferring them to a computer. The company also advises users to block all unsolicited outbound communication using a utility such as Norton Internet Security, which prevents malware and spyware from secretly transferring information to unknown sources over the internet.


Filed under: troubleshooting

, , 10comments, del.icio.us, slashdot, digg, buzz , Twitter



10 comments
Reader Reactions (Please use <i></i> for italic text)

subscribe to comments
for this article




Expand All   Global Settings
testudo
Lucky!
0
06/11, 10:42am, EDT
Its a good thing Symantec has a product like Norton Internet Security to reference in the security notices!
Fresh-Faced Recruit
Joined Aug 2001
User is offline
bombastinator
2 free programs: do they
0
06/11, 11:06am, EDT
I found some converted open source stuff but I don't know if thy will catch this thing

zebra scanner 2.02 http://home.wanadoo.nl/denheyer/webpaginas/ZebraDocumentation.html This does not remove anything but can tell you if anything is hinkey. It looks similar to such windows products as Icesword. On the bright side these kinds of programs are very powerful if you know how to use them because they are independant of updates and are capable of cathhing zero day stuff. but again no removal and little automation.

ClamXav http://www.clamxav.com/ is an open source antivirus program. As the OOo worm affects linux as well I think it likely that it will catch it on macs as well. It would be nice to know for sure though
Fresh-Faced Recruit
Joined Jun 2007
User is offline
jpellino
does this hit neooffice?
0
06/11, 11:08am, EDT
or just the x11 openoffice?

Fresh-Faced Recruit
Joined Oct 1999
User is offline
gskibum3
P2P?
0
06/11, 11:35am, EDT
Is this not an example of the idiocy of using P2P more than a specific example of Open Office vulernabilities?
Fresh-Faced Recruit
Joined Nov 2006
User is offline
SubPop
project manager
0
06/11, 11:41am, EDT
C'mon open source gurus. You're supposed to have saved the world from this kind of stuff by now!
Fresh-Faced Recruit
Joined Jan 2006
User is offline
Rance
I'd like...
0
06/11, 11:43am, EDT
...to see the technicals on this thing. Is this security warning implying that this spyware and malware *runs* on OSX (or linux for that matter)? To bundle installers and applications for three different OSeseses in one document would be quite a feat.

Symantec has nothing on their site regarding the technical details.
Fresh-Faced Recruit
Joined Apr 2002
User is offline
suhail
Symantec
0
06/11, 11:47am, EDT
isn't this the software when installed creates a bigger security hole in OSX?
Senior User
Joined Nov 1999
User is offline
bhuot
this was always possible
0
06/11, 12:00pm, EDT
Unfortunately Open Office documents can have macros like MS Office documents and so this was always a possibility. Lucky for me I use an HTML editor for short documents, LaTeX for long documents and Pages for desktop publishing, so I can get rid of Open Office.org. I wish I could find a Linux distribution without OpenOffice.org. As far as NeoOffice is concerned and this also applies to OpenOffice.org on Suse Linux, not only are they vulnerable to this kind of exploit, they are also vulnerable to MS Office macro viruses as well as they include partial VBA compatibility.
Fresh-Faced Recruit
Joined Nov 2003
User is offline
testudo
Re: project manager
0
06/11, 1:35pm, EDT
The problem is, most likely, people are trying so hard to make this a perfect 'office killer' that little things like security concerns tend to concern them not.

Also, the problem with macros is that people want them powerful, then complain when that power can be used in bad ways.
Fresh-Faced Recruit
Joined Aug 2001
User is offline
SubPop
re: project manager
0
06/11, 5:00pm, EDT
So, in other words, it's the same diet as most other open source projects - all the calories, with none of the flavor.
Fresh-Faced Recruit
Joined Jan 2006
User is offline
Your Comments

In order to post comments: If you are a registered member, please login with your MacNN Forums username and password otherwise please uncheck the checkbox below.


Registered Member?
macnn forums login:

macnn forums password:

Not a member of the MacNN forums? Register now for free.

MacNN iPodNN Electronista
top searches
1. apple
2. iphone
3. apple TV
4. ipod
5. mac
6. BBC
7. icons
8. icon
9. macbook
10. leopard
search for more ..
RSS Feeds

Have the latest content delivered to your desktop via RSS. Use the links below to get access to a specific blog, news, or reviews feed.



  MacNN -all

  MacNN Reviews

  MacNN Podcasts

  iPodNN

  Electronista

  Left Lane News
Want To Sell Your Laptop? Any Condition - receive Top Cash. Get an instant quote. Free shipping www.CashForLaptops.com

Internet Marketing School - 100% Online: Master SEO, SEM, E Commerce, Media & More with a U of San Francisco Certificate.

Buy from The Apple Store, iTunes.com, Amazon.com, TechDepot, OfficeDepot, Computers4Sure, or donate.