Originally posted by fguerraz
View Post
Announcement
Collapse
No announcement yet.
Apache OpenOffice Vulnerable To One-Click Code Execution
Collapse
X
-
Originally posted by franglais125 View PostI remember people (in many internet forums, like here) expressing concern precisely about something like this.
At this point you are actively harmful, Apache.
Fuck you.
- Likes 1
Comment
-
How: Applications of the OpenOffice suite handle non-http(s) hyperlinks in an insecure way, allowing for 1-click code execution on Windows and Xubuntu systems via malicious executable files hosted on Internet-accessible file shares.
Why: The mitigation in Apache OpenOffice 4.1.10 assures that a security warning is displayed to give users the option of continuing to open the hyperlink. Best practice dictates to be careful when opening documents from unknown and unverified sources.
And how is an OK window a solution?
I click on an ftp link, and the default is downloading it, and executing it, or what?
- Likes 1
Comment
-
Originally posted by andyprough View Post
WPS and OnlyOffice both have very good MS compatability. Have you tried Softmaker Office? I find that its MS compatibility is even better in some ways.
- Likes 1
Comment
-
Originally posted by kpedersen View Post
I do find it a bit bizarre that someone could dislike OpenOffice because its free license isn't the exact free license they would like and instead migrate to a completely proprietary solution.
- Likes 1
Comment
-
Originally posted by M@GOid View PostIt would be interesting to hear from LibreOffice Foundation about their download numbers. I bet they were much smaller than Apache's, hence avoiding talking about it too much.
Phoronix: Apache Software Foundation Celebrates Two Decades Of OpenOffice While the LibreOffice fork is much more popular than OpenOffice these days, the Apache Software Foundation does continue maintaining the OpenOffice codebase born out of Sun Microsystems' StarOffice... http://www.phoronix.com/scan.php?page=news_item&p
Basically, despite the appearance, LO and AOO have the same order of downloads, and these are in the range 1.6-3M download/month.
The point is that even if the AOO development is stagnant, both the project have an huge and comparable number of the users.
- Likes 1
Comment
-
Originally posted by kreijack View Post
I looked at these data. And below what I found.
Phoronix: Apache Software Foundation Celebrates Two Decades Of OpenOffice While the LibreOffice fork is much more popular than OpenOffice these days, the Apache Software Foundation does continue maintaining the OpenOffice codebase born out of Sun Microsystems' StarOffice... http://www.phoronix.com/scan.php?page=news_item&p
Basically, despite the appearance, LO and AOO have the same order of downloads, and these are in the range 1.6-3M download/month.
The point is that even if the AOO development is stagnant, both the project have an huge and comparable number of the users.
After I posted earlier, I did a search for numbers and stumbled upon a blog from a dude determined to "expose" the TDF numbers, back when they split from OOo. One of the posts he did was calling out TDF on the developers migration in 2011/12. Too bad that tread is now closed. It would be fun to ask him now on how that developer migration wasn't happening...
- Likes 1
Comment
-
Originally posted by kreijack View Post
I looked at these data. And below what I found.
Phoronix: Apache Software Foundation Celebrates Two Decades Of OpenOffice While the LibreOffice fork is much more popular than OpenOffice these days, the Apache Software Foundation does continue maintaining the OpenOffice codebase born out of Sun Microsystems' StarOffice... http://www.phoronix.com/scan.php?page=news_item&p
Basically, despite the appearance, LO and AOO have the same order of downloads, and these are in the range 1.6-3M download/month.
The point is that even if the AOO development is stagnant, both the project have an huge and comparable number of the users.
- Likes 2
Comment
Comment