25 matches found
LibreOffice 6.03 /Apache OpenOffice 4.1.5 Malicious ODT File Generator
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'base64' require 'rex/zip' class MetasploitModule 'LibreOffice 6.03 /Apache OpenOffice 4.1.5 Malicious ODT File Generator', 'Description' = 'Generates a Maliciou...
Exploit for CVE-2023-2255
CVE-2023-2255 CVE-2023-2255 RCE & load of external ressources...
SUSE CVE-2012-4233
LibreOffice 3.5.x before 3.5.7.2 and 3.6.x before 3.6.1, and OpenOffice.org OOo, allows remote attackers to cause a denial of service NULL pointer dereference via a crafted 1 odt file to vcllo.dll, 2 ODG Drawing document file to svxcorelo.dll, 3 PolyPolygon record in a .wmf Window Meta File file...
CVE-2020-12432
The WOPI API integration for Vereign Collabora CODE through 4.2.2 does not properly restrict delivery of JavaScript to a victim's browser, and lacks proper MIME type access control, which could lead to XSS that steals account credentials via cookies or local storage. The attacker must first obtai...
Improper access control
The WOPI API integration for Vereign Collabora CODE through 4.2.2 does not properly restrict delivery of JavaScript to a victim's browser, and lacks proper MIME type access control, which could lead to XSS that steals account credentials via cookies or local storage. The attacker must first obtai...
CVE-2020-12432
Summary: CVE-2020-12432 affects Collabora CODE/WOPI integration used by Vereign Collabora CODE up to version 4.2.2. The vulnerability arises from improper restriction of JavaScript delivery to a user’s browser and weak MIME-type access control, enabling cross-site scripting that can steal credent...
Hackers Turn to OpenDocument Format to Avoid AV Detection
Attackers have a new obfuscation technique that uses the OpenDocument file format for sneaking payloads past antivirus software. Past macro-based attacks have relied on malware hitching a ride with .docx, .zip, .jar and many other file formats. But researchers at Cisco Talos said that because the...
LibreOffice < 6.2.6 Macro - Python Code Execution Exploit
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'LibreOffice Macro Python Code Execution', 'Description' = %q LibreOffice comes bundled with sample macros written in Python and allows the abilit...
LibreOffice Macro Python Code Execution
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'LibreOffice Macro Python Code Execution', 'Description' = %q LibreOffice comes bundled with sample macros written in Python and allows the abilit...
LibreOffice Macro Python Code Execution
LibreOffice comes bundled with sample macros written in Python and allows the ability to bind program events to them. LibreLogo is a macro that allows a program event to execute text as Python code, allowing RCE. This module generates an ODT file with a dom loaded event that, when triggered, will...
LibreOffice 6.0.7 / 6.1.3 - Macro Code Execution Exploit
Exploit for multiple platform in category local exploits This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'LibreOffice Macro Code Execution', 'Description' = %q LibreOffice comes bundled with...
LibreOffice Macro Code Execution
LibreOffice comes bundled with sample macros written in Python and allows the ability to bind program events to them. A macro can be tied to a program event by including the script that contains the macro and the function name to be executed. Additionally, a directory traversal vulnerability exis...
Apache OpenOffice Writer ODT file Information Disclosure Vulnerability (May 2018) - Windows
Apache OpenOffice Writer is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
LibreOffice / Open Office - .odt Information Disclosure Exploit
Exploit for windows platform in category local exploits ! /usr/bin/python Exploit Title: Malicious ODF File Creator Date: 1st May 2018 Exploit Author: Richard Davy Vendor Homepage: https://www.libreoffice.org/ Software Link: https://www.libreoffice.org/ Version: LibreOffice 6.0.3, OpenOffice 4.1....
DEBIAN-CVE-2012-4233
LibreOffice 3.5.x before 3.5.7.2 and 3.6.x before 3.6.1, and OpenOffice.org OOo, allows remote attackers to cause a denial of service NULL pointer dereference via a crafted 1 odt file to vcllo.dll, 2 ODG Drawing document file to svxcorelo.dll, 3 PolyPolygon record in a .wmf Window Meta File file...
CVE-2012-4233
LibreOffice 3.5.x before 3.5.7.2 and 3.6.x before 3.6.1, and OpenOffice.org OOo, allows remote attackers to cause a denial of service NULL pointer dereference via a crafted 1 odt file to vcllo.dll, 2 ODG Drawing document file to svxcorelo.dll, 3 PolyPolygon record in a .wmf Window Meta File file...
CVE-2012-4233
LibreOffice 3.5.x before 3.5.7.2 and 3.6.x before 3.6.1, and OpenOffice.org OOo, allows remote attackers to cause a denial of service NULL pointer dereference via a crafted 1 odt file to vcllo.dll, 2 ODG Drawing document file to svxcorelo.dll, 3 PolyPolygon record in a .wmf Window Meta File file...
CVE-2012-2665
Multiple heap-based buffer overflows in the XML manifest encryption tag parsing functionality in OpenOffice.org and LibreOffice before 3.5.5 allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted Open Document Text .odt file with 1 a child tag within...
Heap overflow
Multiple heap-based buffer overflows in the XML manifest encryption tag parsing functionality in OpenOffice.org and LibreOffice before 3.5.5 allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted Open Document Text .odt file with 1 a child tag within...
CVE-2012-2665
Multiple heap-based buffer overflows in the XML manifest encryption tag parsing functionality in OpenOffice.org and LibreOffice before 3.5.5 allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted Open Document Text .odt file with 1 a child tag within...