OpenOffice worm hits Mac, Linux and Windows
Published: 11 Jun 2007 09:03 BST
Malware targeting OpenOffice documents is spreading through multiple operating systems including Mac OS, Windows and Linux, according to Symantec.
According to the Symantec Security Response website, the worm is capable of infecting multiple operating system platforms and is spreading.
The advisory said: "A new worm is being distributed within malicious OpenOffice documents. The worm can infect Windows, Linux, and Mac OS X systems. Be cautious when handling OpenOffice files from unknown sources".
The worm was first spotted late last month but at the time, it was not thought to be "in the wild".
Once opened, the OpenOffice file (badbunny.odg) launches a macro that behaves in several different ways depending on the user's operating system.
On Windows systems, it drops a file called drop.bad which is moved to the system.ini in the user's mIRC folder, while executing the Javascript virus badbunny.js that replicates to other files in the folder.
On Apple Mac systems, the worm drops one of two Ruby script viruses in files called badbunny.rb and badbunnya.rb.
On Linux systems, the worm drops both badbunny.py as an XChat script and badbunny.pl as a Perl virus.
Symantec rates the worm "medium risk".
Did you find this article useful?
44 out of 72 people found this useful
Digg
Slashdot
Del.ici.ous
Stumble
Reddit
