PeNgUiN

Firm anti Sophon klaim's notable virus have found first one virus contaminates to pass through document OpenOffice.org.
That virus is so-called can show off at Windows platform, MAC, and Linux at a swoop.
Even such Sophos declares for that until now that virus is not threat because was spread and raising hell outside there.
Named if this virus only proof of concept (probe).

Worm who given by SB / Badbunny's name a. that, utilizing script macro StarBasic that integrated deep OpenOffice to carry on its action with makes script any other at victim computer.
“Worm that will try to download and features JPEG'S image improper of a man which put on dress bunny while classy doing sexual relationship activity ”, according to APC.

Worm SB / Badbunny a. that will infektion victim while they open OpenOffice Draw's file by the name of badbunny.odg. Macro that lurking at deep that file will carry on different action to be hung platform which that utilized by that time (Windows, MacOS or Linux):
Windows: Worm will make file by the name of drop.bad is next disalinkan will go to system.ini's file on folder mIRC (if is found on victim computer) and making and carries on badbunny.js's file that constitutes one Javascript virus that will on call as duplikator worm's file.
MacOS: Worm will make two files script virus utilizes Ruby's languages (its file given by badbunny.rb's name or badbunnya.rb)
Linux: Worm will make badbunny.py's file as script XChat and also make badbunny.pl's file that constitute little virus gets Perl's language basis menularkan's commisioned on Perl's file another.

script XChat's file and mIRC on call as virus that menduplikasi and distributes OpenOffice's file already most infects worm: badbunny. odg passes through DCC'S protocol passes Internet band / chatting irc.
Even such descries this virus will be hard for amends because still needful user's interaction overdose and still pending in many particular condition.
Example: at MacOS x and Linux Is virus is still rely user's interaction to decide that mengeksekusi script Ruby / script Xchat will or not, one that of course will be cancelled for many user which is aware about security problem.
But at eksekusi's Windows Javascript can be done by worm automatically without interaction with user that of course wills be threat that dangerously.
SB / Badbunny a. is worm proof of concept that descries at sends over direct enamel go to Sophos's team with intent strictly for point out probe to weigh intention to overspread and does action wreck.
To its safe, better You don't carry on aught macro in one OpenOffice.org's file until quite a confident if that file clear and comes from abiding source.

source: Linux's magazine Online