EditorsAbout the SiteComes vs. MicrosoftUsing This Web SiteSite ArchivesCredibility IndexOOXMLOpenDocumentPatentsNovellNews DigestSite NewsRSS

07.12.08

Taking Microsoft OOXML to Task

Posted in ISO, Microsoft, Open XML, OpenDocument, Security at 2:13 pm by Dr. Roy Schestowitz

Any Windows/Office debuggers in the audience?

The following is a reproduction of a new post from Rex Ballard (I started this discussion thread), whose previous post we quoted the other day.


Message-ID: <31a66169-d9e7-4715-9e9e-e3488ebd36a9@25g2000hsx.googlegroups.com>
From: Rex Ballard <rex.ballard@gmail.com>
Newsgroups: comp.os.linux.advocacy
Subject: Re: Leaked ISO Document Reveals Crooked ISO Amid MS OOXML Corruptions
Date: Sat, 12 Jul 2008 08:20:23 -0700 (PDT)

[...]

ODF is a comprehensive document that provides detailed specifications
from the high level document content down to the smallest elements of
scalable vector graphics. There are some “standard” mime object types
that are supported, such as PNG and JPEG, but other embedded formats
must be installed using plug-ins which have to be authenticated by the
user and by the system at installation time, and cannot be installed
by the content. Furthermore, the installed content can easily be
identified as trustworthy or not, and can be restricted in it’s
capabilities.

OpenXML on the other hand, is a high-level specification which
describes the high level envelopes used to embed binary objects which
are included in the content. The content itself contains the binary
code which can call any function in any Microsoft library and has all
permissions of the person opening the document. If a user account is
set up as “Administrator”, then the application can mess with the
registry, create, download, and hide files, can execute applications
in those files, can install any number of new viruses, and generally
wreak havoc on the system.

I’ll leave it to others to document the exact details (as I said, I’m
busy these days), but I’m sure anyone who tries to publish these
vulnerabilites will probably find themselves getting the same
treatment that Tracy Reed of Ultraviolet.org got when he tried to
publish his warnings about ActiveX controls back in 1997. Microsoft
got a court injunction against him, and forced him to take down the
content, claiming that it was being used to encourage hacking, and was
damaging the Microsoft brand.

“I got a couple of docx documents and had trouble getting them to open, even with the plug-in for Office XP. Next thing I know, I get a notice from my registry auditor that I have 1300 new registry errors.”Over the last 10 years,
we’ve seen these very same
techniques, documented back in 1997,
used widely to spread viruses including
Melissa, Nimda, Sky, BugBear, and about
250,000 other viruses, worms,
and malware, not including spy-ware and
other “Microsoft Authorized”
invasions of our privacy.

I got a couple of docx documents and had trouble getting them to open,
even with the plug-in for Office XP. Next thing I know, I get a
notice from my registry auditor that I have 1300 new registry errors.
And suddenly, my PC is churning the disk-drive and the network
connection at 3:00 AM (I’m getting old and have to get up), and the
network shows that I’m uploading something at full speed, even though
my computer is supposedly sleeping.

It isn’t a back-up program that I’m running.

I would encourage COLA readers and OSS advocates to explore this in
more detail.

get someone with Office 2007 to send you a docx file.
unzip it using pkzip or winzip or unzip.

look at the binary files.

replace one binary object with another.

zip up the document,

see if your office-2007 user can read the “enhanced” document.

For those of you with OLE programming skills, create an OLE object
that creates a file, and e-mails that file to you using smtp.

Send a document with this new ole object embedded (along with the
others) and see if you get an e-mail.

I haven’t tried this, and I don’t know if it will work. I’m not sure
how hard it would be to make it work. I just think it might be an
interesting project worth investigating, especially if you are
considering the migration of a few thousand users to Vista and Office
2007.

I’d love to see what the results turn out to be. After all, if it’s
that easy to take control of a recipient’s machine just by sending
them a “trusted” Word, Excel, or PowerPoint attachment, just think how
much chaos a really aggressive malicious hacker, with a goal of
obtaining marketable information about your business, could do.


Does ISO really want to approve such a ‘virus’? As an international standard even? If someone tests the above, please post the outcome here or elsewhere. It would prove invaluable.

The last time a chain of ISO problems was cited, Ian Easson challenged an argument from Groklaw. He might wish read the following lengthy follow-up. ISO is in a deeper puddle of mud than before.

Brazil is a P member of SC 34, so according to my reading of the clause, it has the right to appeal if any of the three above issues apply, and arguably they all do. According to South Africa, if the issue is ISO’s reputation, or if there is a matter of principle involved, Brazil can appeal. Even point three could apply, in that Brazil raises matters such as incorrect tabulation of votes, which, if true, one would hope ISO wasn’t aware of.

[...]

Why did they bother to go, one might ask? Why vote, if votes disappear from the record? By my reading, Brazil paints a picture of an orchestrated event, tilted away from criticism or a negative result and a refusal to give substantive consideration to issues delegates wanted to discuss, due to time constraints Brazil calls arbitrary, and worse.

For details about the BRM in question, see [1, 2, 3, 4, 5, 6, 7, 8] and have your jaw sink to the floor. It was a bad plan from the get-go [1, 2, 3, 4, 5], but Emperor Microsoft was in a hurry and it even used its lobbyist Jan Van Den Beld to change the rules ‘on the fly’.

OOXML protests in India
From the Campaign for Document Freedom

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Reddit
  • co.mments
  • DZone
  • email
  • Google Bookmarks
  • LinkedIn
  • NewsVine
  • Print
  • Technorati
  • TwitThis
  • Facebook

If you liked this post, consider subscribing to the RSS feed or join us now at the IRC channels.

Pages that cross-reference this one

What Else is New


  1. Under Distributed Denial of Service Attacks Lately, But We're Too Robust For Those

    Efforts to take Techrights offline have been ramped up lately; but it's not working and it hardly even distracts us from publishing



  2. The Art of Giving: Why Free Software Will Inevitably Survive Attacks Against It

    Societies that share and look after their peers/neighbours will always be better off than predatory societies, which breed exploitation, distrust, discord and eventually systemic collapse



  3. 'Journalism' in 2020: Far More Articles About What Computer Linus Torvalds Bought Than About Linux Releases

    Yesterday's (or late Sunday's) Linux announcement (RC7) is symptomatic of a broader issue we've long spoken about; it restricts people's ability to express an opinion, which can cloud any meritorious and substantial debate about technical matters journalists cannot grasp or comment on (it takes more effort and research)



  4. Links 25/5/2020: Wrapland Redone, DebConf20 Plans, Many More Games

    Links for the day



  5. Media Covers WSL Like People Actually Use This Trash (a Failed Distro Which Only Works With Windows)

    Lots of abundantly redundant puff pieces have appeared in paid-for (by Microsoft) media this past week covering WSL/2, but that's grossly disproportional to the people who care and actually use those types of things (because money talks, not technical substance)



  6. Working From Home on Patent Monopolies Would Lower Their Quality and Perceived Legitimacy

    The patent system wherein people grant monopolies from their sofas and bedrooms isn't helping the already-eroded perception/image of patent offices that mostly grant patents to massive multinationals (and far too many patents overall)



  7. The Attitude of António Campinos Toward Courts and Toward Justice Same as Benoît Battistelli's

    6 years down the road we're still dealing with unaccountable tyrants who laugh at the law, laugh at lawmakers and disregard law enforcers (like the Trump regime across the Atlantic)



  8. IRC Proceedings: Sunday, May 24, 2020

    IRC logs for Sunday, May 24, 2020



  9. Asking Microsoft If It Loves Linux is Like Asking Google If It's Evil

    The media keeps bombarding us with lousy, weakly-sourced messages about Microsoft regretting its stance on “Open Source” and loving “Linux” (both are lies that are very easily debunked), so journalism has an existential problem and maybe too much dependence on ad money (a form of bribery) from “Big Tech” that does “clown computing” and “apps”



  10. Features Considered Harmful

    "But the benefits of Free software, free candy and new features are all meaningless, if the user isn't in control."



  11. Free, as in “App”

    "As everyday users, we need to be able to configure our applications, and this process must/needs to be made as easy and understandable as possible."



  12. Links 25/5/2020: Linux 5.7 RC7 and TeleIRC 2.0.0

    Links for the day



  13. Links 24/5/2020: TUXEDO Computers on AMD, Ardour 6.0 is Out

    Links for the day



  14. Trust Microsoft With Everything Including Your Life

    A timely if not apt meme about the state of Windows-powered hospitals, which very often end up foreign-operated (taken over by crackers in another country)



  15. When the Response to Hospitals Being Systematically Cracked Through Microsoft Products Like Windows is... Blocking the Competition of Microsoft

    People keep dying because Microsoft Windows, poorly designed with NSA back doors in it, falls into the hands of malicious actors (sometimes overseas, sometimes using leaked tools of the NSA itself) and guess who takes the blame when hospitals grind to a halt due to this…



  16. IRC Proceedings: Saturday, May 23, 2020

    IRC logs for Saturday, May 23, 2020



  17. Ode to the 'Orange One'

    Bush Senior and Junior, Hillary/Bill Clinton and now António Battistelli (or Benoît Campinos); are we dealing with monarchies/monarchs and pledges of allegiance or with public institutions beholden to the public, to be governed by the law?



  18. Home Working at the EPO: Your Corporate, Global Monopolies Will Be Rubber-stamped From Private Homes

    We’re expected to believe that EPO employees working under the noses of Microsoft (in another continent!) with kids running around will be able to be both productive and professional; staff already complains about working until midnight and beyond, without any conceivable separation between career and personal life



  19. To Understand Why “Inner Source” is a Cheap Corporate Ploy if Not a Free Software-Hostile 'Scam' Look Who's Behind It

    It's rather easy to see that the O'Reilly-connected and Bill Gates-connected leadership of InnerSource Commons (ISC) doesn't register this fake 'charity' to promote Software Freedom but to fight against it under the guise of "open" (openwashing)



  20. Microsoft: We Were Wrong About Open Source and That's Why We 'Liberate' Code... From 1983 (and We Won't Accept Code Changes, Either!)

    The tiresome openwashing efforts from Microsoft verge on the farcical, but the Microsoft-funded media plays along with it all regardless



  21. The Unitary Patent and Unified Patent Court Book

    The Unified Patent Court (UPC) propaganda must be confronted; there's a book in the making about UPC lies and the anatomy of this legislative coup attempt by litigation fanatics (who profit from monopolies, patent trolls and so on)



  22. Links 23/5/2020: Oracle Solaris 11.4 SRU21, Wine-Staging 5.9

    Links for the day



  23. Spillover: Team UPC Trying to Fill Up the Cup 'Half Empty'

    The European Patent Office's (EPO) corruption is mirrored in UPC corruption; the former hasn't yet seen its downfall due to this corruption and the latter is already up in flames, no matter how media sites (are paid to) spin it, giving false hope for the sake of lobbying by Team UPC



  24. The EPO Continues to Publicly Brag About Granting Illegal Patents to Fake 'Production' (It's Not Really Production But Abuse of the Granting Authority)

    Patents on life, nature and mathematics serve to highlight the degree of corruption embraced by EPO management, eager to fake ‘production’ in order to hoard money, which is then stolen and misused in other ways



  25. GNOME Settlement With Patent Troll Fails to Address/Tackle the Software Patent and Software Patents in General

    GNOME settles with the troll on terms that are superficially friendly towards Free software; however, more could be done to actually defuse matters on legal if not precedential grounds



  26. IRC Proceedings: Friday, May 22, 2020

    IRC logs for Friday, May 22, 2020



  27. Fiduciary Technology: Why It's Often Impermissible to Use Microsoft (But It's Done Anyway)

    "As such and if your CTO isn’t actively moving tooling out of the Microsoft ecosystem like bailing water out of a sinking ship, then you should probably be looking for a new CTO."



  28. Links 23/5/2020: FreeBSD 11.4 RC1, Wine 5.9

    Links for the day



  29. Links 22/5/2020: App Icon Preview 2.0.0, dav1d 0.7.0, LibreOffice's New Icons

    Links for the day



  30. Freedom Is Not Possible Without Privacy

    Privacy was the subject of today's feature article; let's not forget how essential a concept it is to guard against encroachments, no matter the given excuses


RSS 64x64RSS Feed: subscribe to the RSS feed for regular updates

Home iconSite Wiki: You can improve this site by helping the extension of the site's content

Home iconSite Home: Background about the site and some key features in the front page

Chat iconIRC Channel: Come and chat with us in real time

Recent Posts