what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 84 RSS Feed

Files

LibreOffice 6.0.3 / OpenOffice 4.1.5 Information Disclosure
Posted May 3, 2018
Authored by Richard Davy

LibreOffice version 6.0.3 and OpenOffice version 4.1.5 suffers from a .odt information disclosure vulnerability.

tags | exploit, info disclosure
advisories | CVE-2018-10583
SHA-256 | 8dfaa0fc230503b0a244b16cf2420d39f87af8b19b498af30d536f1a99b040c9

Related Files

Red Hat Security Advisory 2022-1766-01
Posted May 11, 2022
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2022-1766-01 - LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite.

tags | advisory
systems | linux, redhat
advisories | CVE-2021-25633, CVE-2021-25634, CVE-2021-25635
SHA-256 | 5b846c221d454c90b54c27181222908dd32fca2b480faa78ffd9087c0eef3083
Ubuntu Security Notice USN-5330-1
Posted Mar 16, 2022
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 5330-1 - It was discovered that LibreOffice incorrectly handled digital signatures. An attacker could possibly use this issue to create a specially crafted document that would display a validly signed indicator, contrary to expectations.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2021-25636
SHA-256 | d94aeeeb61dfcd89177a7196875ad92b6f248086ce260ff4e8b41f78182cb078
Ubuntu Security Notice USN-5153-1
Posted Nov 22, 2021
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 5153-1 - It was discovered that LibreOffice incorrectly handled digital signatures. An attacker could possibly use this issue to create a specially crafted document that would display a validly signed indicator, contrary to expectations.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2021-25633
SHA-256 | 4899ad083583da35f78641ddf24f1441522a1dbd81c50de87a4afb9ff9ab7161
Red Hat Security Advisory 2020-4628-01
Posted Nov 4, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-4628-01 - LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite. Issues addressed include bypass and file overwrite vulnerabilities.

tags | advisory, vulnerability
systems | linux, redhat
advisories | CVE-2020-12802, CVE-2020-12803
SHA-256 | 830b0f6123cec4cfe35b47bd6e505c4ffa3a3b74015c30bb57b5aa0e9a1560a8
Red Hat Security Advisory 2020-3944-01
Posted Sep 30, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-3944-01 - Universal Office Converter is a command line tool to convert any document format that LibreOffice can import to any document format that LibreOffice can export. It makes use of the LibreOffice's UNO bindings for non-interactive conversion of documents. Issues addressed include local file inclusion and server-side request forgery vulnerabilities.

tags | advisory, local, vulnerability, file inclusion
systems | linux, redhat
advisories | CVE-2019-17400
SHA-256 | f562b138d2166c12688d8331a98a320f007aa8360e40afef4cc96795041f4c2d
Red Hat Security Advisory 2020-1598-01
Posted Apr 28, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-1598-01 - LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite. Issues addressed include a script execution vulnerability.

tags | advisory
systems | linux, redhat
advisories | CVE-2019-9849, CVE-2019-9850, CVE-2019-9851, CVE-2019-9852, CVE-2019-9853, CVE-2019-9854
SHA-256 | 755181ebd926d493153175d1e4d42bb9e1c8a5b1a42bf0d55491029ddcc901af
Red Hat Security Advisory 2020-1151-01
Posted Apr 1, 2020
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2020-1151-01 - LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite. Issues addressed include code execution and script execution vulnerabilities.

tags | advisory, vulnerability, code execution
systems | linux, redhat
advisories | CVE-2019-9848, CVE-2019-9849, CVE-2019-9850, CVE-2019-9851, CVE-2019-9852, CVE-2019-9853, CVE-2019-9854
SHA-256 | 145184bdec8feb94e483fddfa0200c2069b777342feddd59c9da24d012ba93d3
Ubuntu Security Notice USN-4138-1
Posted Sep 24, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4138-1 - It was discovered that LibreOffice incorrectly handled embedded scripts in document files. If a user were tricked into opening a specially crafted document, a remote attacker could possibly execute arbitrary code.

tags | advisory, remote, arbitrary
systems | linux, ubuntu
advisories | CVE-2019-9854
SHA-256 | 35de2613e4284f14f087555d52e861df76ee5b21c98f0c0d29c66caec5071819
Debian Security Advisory 4519-1
Posted Sep 10, 2019
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4519-1 - It was discovered that the code fixes for LibreOffice to address CVE-2019-9852 were not complete.

tags | advisory
systems | linux, debian
advisories | CVE-2019-9854
SHA-256 | 392ddf2c70b0f688d04fb1b89a78286a0799fcdc673200d04933e1ce2da8a869
Ubuntu Security Notice USN-4102-1
Posted Aug 19, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4102-1 - It was discovered that LibreOffice incorrectly handled LibreLogo scripts. If a user were tricked into opening a specially crafted document, a remote attacker could cause LibreOffice to execute arbitrary code. It was discovered that LibreOffice incorrectly handled embedded scripts in document files. If a user were tricked into opening a specially crafted document, a remote attacker could possibly execute arbitrary code. Various other issues were also addressed.

tags | advisory, remote, arbitrary
systems | linux, ubuntu
advisories | CVE-2019-9850, CVE-2019-9851, CVE-2019-9852
SHA-256 | 983c53a971616e6b47ea1521934e1bf73200bdcdf63393f64dea2636a3248a03
Gentoo Linux Security Advisory 201908-13
Posted Aug 15, 2019
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201908-13 - Multiple vulnerabilities have been found in LibreOffice, the worst of which could result in the arbitrary execution of code. Versions less than 6.2.5.2 are affected.

tags | advisory, arbitrary, vulnerability
systems | linux, gentoo
advisories | CVE-2019-9848, CVE-2019-9849
SHA-256 | 8f091f7544a0f105ddae541f4832675af1ebbd257efb5837882ad961754f78ad
Red Hat Security Advisory 2019-2130-01
Posted Aug 6, 2019
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2019-2130-01 - LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite.

tags | advisory
systems | linux, redhat
advisories | CVE-2018-16858
SHA-256 | 8b76774498c4a9e9865f3316d475af0f76f8b41d7751ace00c86ea481fdfc252
Ubuntu Security Notice USN-4063-1
Posted Jul 17, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4063-1 - Nils Emmerich discovered that LibreOffice incorrectly handled LibreLogo scripts. If a user were tricked into opening a specially crafted document, a remote attacker could cause LibreOffice to execute arbitrary code. Matei "Mal" Badanoiu discovered that LibreOffice incorrectly handled stealth mode. Contrary to expectations, bullet graphics could be retrieved from remote locations when running in stealth mode. Various other issues were also addressed.

tags | advisory, remote, arbitrary
systems | linux, ubuntu
advisories | CVE-2019-9848, CVE-2019-9849
SHA-256 | 4db3e45df385892f287ef9e4bf4646f8c5b32fd37f24ce860e8e033f281ad717
Debian Security Advisory 4483-1
Posted Jul 17, 2019
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4483-1 - Two security issues have been discovered in LibreOffice.

tags | advisory
systems | linux, debian
advisories | CVE-2019-9848, CVE-2019-9849
SHA-256 | 42524692833f927f1202932a01bdc9b9b6fdff456b3c05206acca9a4a24095c1
Apache UNO API Remote Code Execution
Posted Mar 14, 2019
Authored by sud0woodo

Apache UNO with LibreOffice version 6.1.2 and OpenOffice version 4.1.6 API remote code execution exploit.

tags | exploit, remote, code execution
SHA-256 | e2b894b02b0d519f364d9b8389e1395625e36a8ea0fa94f0e67e01102efe1363
Apache UNO API Remote Code Execution
Posted Mar 1, 2019
Authored by Axel Boesenach

When Apache OpenOffice and LibreOffice are spawn as an office server, they bind an Apache UNO API that allows for remote code execution.

tags | advisory, remote, code execution
SHA-256 | 8cddb7ad2dfb2dbc6da9b983b4db2b73dc316bef58ef8cdacac477383bf65d80
Ubuntu Security Notice USN-3883-1
Posted Feb 6, 2019
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3883-1 - It was discovered that LibreOffice incorrectly handled certain document files. If a user were tricked into opening a specially crafted document, a remote attacker could cause LibreOffice to crash, and possibly execute arbitrary code. It was discovered that LibreOffice incorrectly handled embedded SMB connections in document files. If a user were tricked in to opening a specially crafted document, a remote attacker could possibly exploit this to obtain sensitive information. Various other issues were also addressed.

tags | advisory, remote, arbitrary
systems | linux, ubuntu
advisories | CVE-2018-10119, CVE-2018-10583, CVE-2018-16858
SHA-256 | 3590319206e9f994fc6427d7de0f5ff90c527befe59e8cf74e9ea0c9042ca778
Red Hat Security Advisory 2018-3054-01
Posted Oct 31, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-3054-01 - LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite. Issues addressed include denial of service, information leakage, out of bounds write, and use-after-free vulnerabilities.

tags | advisory, denial of service, vulnerability
systems | linux, redhat
advisories | CVE-2018-10119, CVE-2018-10120, CVE-2018-10583
SHA-256 | 308f295e0fdf2a01c53bc9fa8c804706358831e0526dea42fc7da2714f90fb34
Debian Security Advisory 4178-1
Posted Apr 23, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4178-1 - Two vulnerabilities were discovered in LibreOffice's code to parse MS Word and Structured Storage files, which could result in denial of service and potentially the execution of arbitrary code if a malformed file is opened.

tags | advisory, denial of service, arbitrary, vulnerability
systems | linux, debian
advisories | CVE-2018-10119, CVE-2018-10120
SHA-256 | 159dd6ac962d87a09305543365907db58b430318d6a33c6e67ecc67fde1da39d
Red Hat Security Advisory 2018-0517-01
Posted Mar 13, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-0517-01 - LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite. A remote arbitrary file disclosure vulnerability has been addressed.

tags | advisory, remote, arbitrary
systems | linux, redhat
advisories | CVE-2018-6871
SHA-256 | df8589042d51c253f5547b55c67b6688e6bcfe6ff145581aeb95a3c37ef3e102
Ubuntu Security Notice USN-3579-3
Posted Mar 7, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3579-3 - USN-3579-1 fixed a vulnerability in LibreOffice. After upgrading, it was no longer possible for LibreOffice to open documents from certain locations outside of the user's home directory. This update fixes the problem. Various other issues were also addressed.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2018-6871
SHA-256 | 08ff6aa281e94b50006e3f12d9cc3989d3ebbdf6abd5c8f2642a88df898562ee
Red Hat Security Advisory 2018-0418-01
Posted Mar 6, 2018
Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2018-0418-01 - LibreOffice is an open source, community-developed office productivity suite. It includes key desktop applications, such as a word processor, a spreadsheet, a presentation manager, a formula editor, and a drawing program. LibreOffice replaces OpenOffice and provides a similar but enhanced and extended office suite. Security Fix: libreoffice: Remote arbitrary file disclosure vulnerability via WEBSERVICE formula.

tags | advisory, remote, arbitrary
systems | linux, redhat
advisories | CVE-2018-6871
SHA-256 | a9fb919101d1d0d100c8aaf9df7bcd8a37122796ad3c221fc442b6ba84b9ba3b
Ubuntu Security Notice USN-3579-2
Posted Mar 1, 2018
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 3579-2 - USN-3579-1 fixed a vulnerability in LibreOffice. After upgrading, it was no longer possible for LibreOffice to open documents from certain locations outside of the user's home directory. This update fixes the problem. Various other issues were also addressed.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2018-6871
SHA-256 | 1ee6157f7172c9b6f4d676c2b41c6b22d80238b9e48f24c511be577d9f93fe8e
Gentoo Linux Security Advisory 201802-06
Posted Feb 20, 2018
Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201802-6 - A vulnerability in LibreOffice might allow remote attackers to read arbitrary files. Versions less than 5.4.5.1 are affected.

tags | advisory, remote, arbitrary
systems | linux, gentoo
advisories | CVE-2018-6871
SHA-256 | e52783ecbf3d0aed53e821478a194b9d1227605de0ca88ff8d978517facdc9c9
Debian Security Advisory 4111-2
Posted Feb 12, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4111-2 - Mikhail Klementev, Ronnie Goodrich and Andrew Krasichkov discovered that missing restrictions in the implementation of the WEBSERVICE function in LibreOffice could result in the disclosure of arbitrary files readable by the user who opens a malformed document.

tags | advisory, arbitrary
systems | linux, debian
advisories | CVE-2018-6871
SHA-256 | d2adb550f067e2edb76fce3aa20fd6c76d87d59c6385b5ad1948e55508ed501b
Page 1 of 4
Back1234Next

File Archive:

August 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    20 Files
  • 2
    Aug 2nd
    4 Files
  • 3
    Aug 3rd
    6 Files
  • 4
    Aug 4th
    55 Files
  • 5
    Aug 5th
    16 Files
  • 6
    Aug 6th
    0 Files
  • 7
    Aug 7th
    0 Files
  • 8
    Aug 8th
    0 Files
  • 9
    Aug 9th
    0 Files
  • 10
    Aug 10th
    0 Files
  • 11
    Aug 11th
    0 Files
  • 12
    Aug 12th
    0 Files
  • 13
    Aug 13th
    0 Files
  • 14
    Aug 14th
    0 Files
  • 15
    Aug 15th
    0 Files
  • 16
    Aug 16th
    0 Files
  • 17
    Aug 17th
    0 Files
  • 18
    Aug 18th
    0 Files
  • 19
    Aug 19th
    0 Files
  • 20
    Aug 20th
    0 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close