CVE-2018-16858 - My writeup about a RCE vulnerability via macro execution in Libreoffice: https://insert-script.blogspot.com/2019/02/libreoffice-cve-2018-16858-remote-code.html …
-
-
it is mentioned in the blogpost that the PoC does not work this way on openoffice (openoffice does not support parameters being passed) - but to create a poc you can place a python file called http://t.py with a function called t in C:\
-
and modify my PoC to have the following traversion code ../../../../../../../../../../../../../../t.py$t?language=Python&location=share - then the code specified in the t function should be executed :)
- 6 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.