CVE-2018-10583: Infoleak
First published: Tue May 01 2018(Updated: )
An information disclosure vulnerability occurs when LibreOffice 6.0.3 and Apache OpenOffice Writer 4.1.5 automatically process and initiate an SMB connection embedded in a malicious file, as demonstrated by xlink:href=file://192.168.0.2/test.jpg within an office:document-content element in a .odt XML document.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Libreoffice Libreoffice | =6.0.3 | |
| Apache OpenOffice | =4.1.5 | |
| Debian Debian Linux | =7.0 | |
| Debian Debian Linux | =8.0 | |
| Debian Debian Linux | =9.0 | |
| Redhat Enterprise Linux Desktop | =7.0 | |
| Redhat Enterprise Linux Server | =7.0 | |
| Redhat Enterprise Linux Workstation | =7.0 | |
| Canonical Ubuntu Linux | =14.04 | |
| Canonical Ubuntu Linux | =16.04 | |
| ubuntu/libreoffice | <1:4.2.8-0ubuntu5.5 | 1:4.2.8-0ubuntu5.5 |
| ubuntu/libreoffice | <1:5.1.6~ | 1:5.1.6~ |
| debian/libreoffice | <=1:6.1.5-3+deb10u7<=1:6.1.5-3+deb10u11<=1:7.0.4-4+deb11u8<=4:7.4.7-1+deb12u1<=4:24.2.0-1<=4:24.2.3~rc1-3 |
Remedy
https://cgit.freedesktop.org/libreoffice/core/commit/?id=0b7f4a4f57117fde33d0b1df96134aa6ccce023e
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://secureyourit.co.uk/wp/2018/05/01/creating-malicious-odt-files/
- https://security-tracker.debian.org/tracker/CVE-2018-10583
- https://www.exploit-db.com/exploits/44564/
- https://access.redhat.com/errata/RHSA-2018:3054
- https://usn.ubuntu.com/3883-1/
- https://lists.apache.org/thread.html/6c65f22306c36c95e75f8d2b7f49cfcbeb0a4614245c20934612a39d@%3Cdev.openoffice.apache.org%3E
- https://lists.apache.org/thread.html/0598708912978b27121b2e380b44a225c706aca882cd1da6a955a0af@%3Cdev.openoffice.apache.org%3E
- https://lists.apache.org/thread.html/c8fd59ac77b42aac90eb5c59b87f3ab59b5e0c3bfb4819aa649a2909@%3Cdev.openoffice.apache.org%3E
- http://seclists.org/fulldisclosure/2020/Oct/26
- https://launchpad.net/bugs/cve/CVE-2018-10583
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1575000
- https://bugzilla.redhat.com/show_bug.cgi?id=1574998
- https://lists.apache.org/thread.html/0598708912978b27121b2e380b44a225c706aca882cd1da6a955a0af%40%3Cdev.openoffice.apache.org%3E
- https://lists.apache.org/thread.html/6c65f22306c36c95e75f8d2b7f49cfcbeb0a4614245c20934612a39d%40%3Cdev.openoffice.apache.org%3E
- https://lists.apache.org/thread.html/c8fd59ac77b42aac90eb5c59b87f3ab59b5e0c3bfb4819aa649a2909%40%3Cdev.openoffice.apache.org%3E
- https://cgit.freedesktop.org/libreoffice/core/commit/?id=0b7f4a4f57117fde33d0b1df96134aa6ccce023e
- https://ubuntu.com/security/notices/USN-3883-1
- https://www.cve.org/CVERecord?id=CVE-2018-10583
- https://nvd.nist.gov/vuln/detail/CVE-2018-10583
- https://cgit.freedesktop.org/libreoffice/core/commit/?h=libreoffice-5-4&id=76e1b96eb6b2a6eefd3f97cbf83679b1229047a3
- https://ubuntu.com/security/CVE-2018-10583
Frequently Asked Questions
What is CVE-2018-10583?
CVE-2018-10583 is an information disclosure vulnerability in LibreOffice 6.0.3 and Apache OpenOffice Writer 4.1.5.
How severe is CVE-2018-10583?
CVE-2018-10583 has a severity rating of 7.5 (High).
How does CVE-2018-10583 occur?
CVE-2018-10583 occurs when LibreOffice 6.0.3 and Apache OpenOffice Writer 4.1.5 automatically process and initiate an SMB connection embedded in a malicious file.
Which software versions are affected by CVE-2018-10583?
CVE-2018-10583 affects LibreOffice 6.0.3 and Apache OpenOffice Writer 4.1.5.
Are there any remedies available for CVE-2018-10583?
There are no known remedies for CVE-2018-10583.
- agent/type
- agent/last-modified-date
- agent/remedy
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2018-10583
- agent/author
- agent/description
- agent/weakness
- agent/severity
- agent/references
- agent/event
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/tags
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- collector/usn-cve
- source/Ubuntu
- vendor/libreoffice
- canonical/libreoffice libreoffice
- version/libreoffice libreoffice/6.0.3
- vendor/apache
- canonical/apache openoffice
- version/apache openoffice/4.1.5
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/7.0
- version/debian debian linux/8.0
- version/debian debian linux/9.0
- vendor/redhat
- canonical/redhat enterprise linux desktop
- version/redhat enterprise linux desktop/7.0
- canonical/redhat enterprise linux server
- version/redhat enterprise linux server/7.0
- canonical/redhat enterprise linux workstation
- version/redhat enterprise linux workstation/7.0
- vendor/canonical
- canonical/canonical ubuntu linux
- version/canonical ubuntu linux/14.04
- version/canonical ubuntu linux/16.04
- package-manager/debian
- package-manager/ubuntu