LibreOffice remote arbitrary file disclosure vulnerability

Remote arbitrary file <i>disclosure</i> vulnerability. Please fix the submission title.

Does anyone know what the threat model is for LibreOffice?<p>For Microsoft Office, VBA Macros are allowed to execute arbitrary code. I assume it&#x27;s the same for LibreOffice Basic. For files without macros (like this exploit) what are the boundaries that should be enforced? It looks like Excel supports reading data from named files by design.[1] Is it ever safe to open a partially-trusted file in LibreOffice?<p>Edit: Some quick testing reveals that external links do work in LibreOffice Calc. If you answer &quot;Yes&quot; to &quot;This file contains links to other files. Should they be updated?&quot; on startup, it can read any file (and presumably use WEBSERVICE to upload the contents via query string).<p>1. <a href="https:&#x2F;&#x2F;support.office.com&#x2F;en-us&#x2F;article&#x2F;create-an-external-reference-link-to-a-cell-range-in-another-workbook-c98d1803-dd75-4668-ac6a-d7cca2a9b95f" rel="nofollow">https:&#x2F;&#x2F;support.office.com&#x2F;en-us&#x2F;article&#x2F;create-an-external-...</a>

Is this what they fixed in 5.4.5 and 6.0.1 security patch?

This is a big deal for any systems that use Open Office to convert files to PDF (or otherwise) w&#x2F;o proper sandboxing :(

Why do they enable such dangerous functions by default?