Sun patches 'critical' StarOffice/StarSuite flaw

Sun Microsystems has shipped a fix for a critical vulnerability affecting its StarOffice/StarSuite product lines.

Sun Microsystems has shipped a fix for a critical vulnerability affecting its StarOffice/StarSuite product lines.

The flaw, which exposes users to code execution attacks, affect StarOffice/StarSuite 7 StarOffice/StarSuite 8 StarOffice/StarSuite 9.

Here's the Skinny from Sun's advisory:

A security vulnerability in StarOffice/StarSuite, related to Microsoft Word document handling, may allow a remote unprivileged user to execute arbitrary code on the system with the privileges of a local user running StarOffice/StarSuite, if the local user opens a crafted Microsoft Word document provided by the remote user.

Dyon Balding of Secunia Research is credited for finding and reporting the issue to Sun.