LibreOffice flaw allows document attacks

A new vulnerability in LibreOffice allows crafted OOXML documents to crash the app and potentially enable remote code execution by an attacker.

A significant security vulnerability has been identified in LibreOffice, the popular open-source office suite. The flaw involves how the software incorrectly handles encryption parameters within Office Open XML (OOXML) documents, such as .docx files. A researcher discovered that an attacker can create a specially crafted document with mismatched encryption salt values. When a user opens this malicious file in a vulnerable version of LibreOffice, the application will crash. This results in a denial of service, preventing the user from accessing the document and disrupting their workflow.

The implications extend beyond a simple application crash. Security experts warn that this type of memory handling error could potentially be exploited to achieve arbitrary code execution (RCE). If an attacker successfully crafts an exploit, they could run unauthorized commands on a user's computer just by tricking them into opening the document. This elevates the threat from a simple nuisance to a serious security risk, potentially leading to data theft or full system compromise. Given LibreOffice's widespread use in corporate and government settings, the risk of targeted attacks using this vector is a major concern for IT and security teams.

The vulnerability affects a widely-used, free alternative to Microsoft Office. It can be triggered by a common document type (OOXML), making it a practical attack vector for denial of service and, potentially, remote code execution, threatening user data and system security.

A successful exploit could lead to business disruption from application crashes (denial of service) and significant security incidents if remote code execution is achieved. This could result in data breaches, system compromise, and the loss of sensitive corporate information.