It’s very easy to point the figure at Microsoft whenever one considers application security issues. Lets face it, they are the biggest target in the known universe so all and sundry are going to have a pop at them.
OpenOffice, the guys that produce one of the only sensible alternatives to Microsoft Office, are now facing up to their responsibilities by releasing details of three vulnerabilities, apparently discovered during a review of their code. The problems focus around issues processing XML files, processing macros that should have been disabled and Java applets that smash their way out of the sandbox.
It will be interesting to watch the progress of OpenOffice, maybe they will be better at “hearts and minds” than Microsoft…