Impact
A user visiting a malicious document and clicking on a link in a HyperLink cell using a control modifier (meaning for example Ctrl+click) could have their account compromised, since the link could use the javascript: scheme and be evaluated in the context of their current page.
Patches
Fixed since version 1.3.2
Mitigation was to restrict HyperLink cell links to http(s) schemes.
Workarounds
Avoid clicking on HyperLink cell links using a control modifier in documents prepared by people you do not trust.
References
hexaltation Remediation developer
georgegevoian Remediation developer
dsagal Remediation reviewer
vviers Reporter
spawnzii Finder
Impact
A user visiting a malicious document and clicking on a link in a HyperLink cell using a control modifier (meaning for example Ctrl+click) could have their account compromised, since the link could use the javascript: scheme and be evaluated in the context of their current page.
Patches
Fixed since version 1.3.2
Mitigation was to restrict HyperLink cell links to http(s) schemes.
Workarounds
Avoid clicking on HyperLink cell links using a control modifier in documents prepared by people you do not trust.
References