Severe RCE Flaw Disclosed in Popular LibreOffice and OpenOffice Software

“Security researcher Alex Inführ has discovered a severe remote code execution (RCE) vulnerability in these two open source office suites that could be triggered just by opening a maliciously-crafted ODT (OpenDocument Text) file. The attack relies on exploiting a directory traversal flaw, identified as CVE-2018-16858, to automatically execute a specific python library bundled within the …

Severe RCE Flaw Disclosed in Popular LibreOffice and OpenOffice Software Read More »