https://bugs.documentfoundation.org/show_bug.cgi?id=120675
--- Comment #6 from insertscript <a...@cure53.de> ---
ah yeah let me explain that a little bit:
In case an odt file contains a user controlled macro, which gets executed as
soon as a certain event is triggered (in my example the onmouseover event), a
dialog box is displayed which either blocks this macro or allows it - depending
on the configured macro security settings (the default setting won't execute
custom macros which are stored inside the document structure).
By abusing the path traversal of the vnd.sun.star.script: and specifying
"location=share" as the parameter it is possible to execute code in a shell
(cmd, sh/bash etc depending on the environment) without triggering any warning
dialog.
Therefore this behavior is bypassing any "macro" protection in place.
--
You are receiving this mail because:
You are the assignee for the bug.
_______________________________________________
Libreoffice-bugs mailing list
Libreoffice-bugs@lists.freedesktop.org
https://lists.freedesktop.org/mailman/listinfo/libreoffice-bugs
