Sun last week pushed out a set of updates designed to fix a flaw in its StarOffice and StarSuite office software packages.

Problems in handling Microsoft Word documents by Sun's open source alternatives created a code injection risk. Users induced into opening malformed documents could wind up with pwned Windows PCs because of the bug, just the sort of thing hackers running targeting attacks might be interested in exploiting.

Users of StarOffice/StarSuite 7, 8, and 9 all need to update their software, and Sun's advisory can be found here.

The bug was discovered by Dyon Balding of Secunia Research.

The flaws addressed by Sun's update relate to recently patched flaws in OpenOffice, involving bugs connected to handling the document table of a Word document and "table parsing", addressed by OpenOffice 3.1.1. ®

Related stories

• Too fat to fly: Kevin Smith and OpenOffice (15 February 2010)
• Interoperability eludes Office and OpenOfffice (20 August 2009)
• OpenOffice bug/feature stirs 'horde of angry chimps' (16 July 2009)
• Review OpenOffice 3.1 ready to lick Microsoft's suite? (11 May 2009)
• OpenOfficers pitch Oracle on life after Sun (29 April 2009)
• Sun gives StarOffice ninth life (17 November 2008)
• Microsoft accuses Office rivals of 'standards conflict' (8 March 2006)