Back to search
CVE-2016-4047
Published: Dec 15, 2016
Modified: Aug 6, 2024
PUBLISHED
Description
An issue was discovered in Open-Xchange OX App Suite before 7.8.1-rev8. References to external Open XML document type definitions (.dtd resources) can be placed within .docx and .xslx files. Those resources were requested when parsing certain parts of the generated document. As a result an attacker can track access to a manipulated document. Usage of a document may get tracked and information about internal infrastructure may get exposed.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
1036157
vdb-entry
x_refsource_SECTRACK
20160622 Open-Xchange Security Advisory 2016-06-22
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now