Abstract

OpenDocument and Open XML are both new open file formats for office documents. OpenDocument is an ISO standard, promoted by OpenOffice.org and Sun StarOffice. Open XML is the new format for Microsoft Office 2007 documents, an ECMA standard. These two formats share the same basic principles: XML files within a ZIP archive, with an open schema, in contrast to good-old proprietary formats (MS Word, Excel, PowerPoint, ...). However, both of them suffer from many security issues, similar to previous Office formats: malicious people can still embed and hide malware (Trojan horses and viruses) thanks to macros, scripts, OLE objects and similar features. This paper shows the security issues with technical details, including XML and ZIP obfuscation techniques that may be used to bypass antiviruses, and describes how to design a filter to get rid of unwanted parts in a safe way.

Full Text
Published version (Free)

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
POS1460 CONTRIBUTING TO THE TRAINING OF IMAGING IN RHEUMATOLOGY BY EXPERTS WORLDWIDE VIA INTERACTIVE MOBILE E-TEACHING: BERLINCASEVIEWER.
K G Hermann ... A Serfaty
-
K G Hermann, et. al.K G Hermann ... A Serfaty
23 May 2022
Generation of Revision Identifier (rsid) Numbers in MS Word
Dirk H.R Spennemann ... Claire L Singh
International journal of digital curation | VOL. 18
Dirk H.R Spennemann, et. al.Dirk H.R Spennemann ... Claire L Singh
11 Feb 2024
Trojan Horse Infection Detection in Cloud Based Environment Using Machine Learning
Hasan Kanaker ... Jamal Zraqou
International Journal of Interactive Mobile Technologies (iJIM) | VOL. 16
Hasan Kanaker, et. al.Hasan Kanaker ... Jamal Zraqou
20 Dec 2022
A Flexible Framework for Malicious Open XML Document Detection based on APT Attacks
Hung-Min Sun ... Chi-Yao Weng
-
Hung-Min Sun, et. al.Hung-Min Sun ... Chi-Yao Weng
01 Apr 2019
View more papers

More From: Journal in Computer Virology

Paper Title
Journal
Date
Author
Differences with high probability and impossible differentials for the KB-256 cipher
R Astrakhantsev ... I Astrakhantseva
Journal in Computer Virology | VOL. -
R Astrakhantsev, et. al.R Astrakhantsev ... I Astrakhantseva
08 Jul 2024
Oblivion: an open-source system for large-scale analysis of macro-based office malware
Alessandro Sanna ... Giorgio Giacinto
Journal in Computer Virology | VOL. -
Alessandro Sanna, et. al.Alessandro Sanna ... Giorgio Giacinto
02 Jul 2024
On modular (CRT-based) secret sharing
Nikolay N Shenets
Journal in Computer Virology | VOL. -
Nikolay N ShenetsNikolay N Shenets
01 Jul 2024
Classification of return-oriented programming gadgets: a machine learning approach
Pierre-François Maillard ... Avisek Gupta
Journal in Computer Virology | VOL. -
Pierre-François Maillard, et. al.Pierre-François Maillard ... Avisek Gupta
19 Jun 2024
View more papers