Back to search
CVE-2017-12608
Published: Nov 20, 2017
Modified: Sep 16, 2024
PUBLISHED
Description
A vulnerability in Apache OpenOffice Writer DOC file parser before 4.1.4, and specifically in ImportOldFormatStyles, allows attackers to craft malicious documents that cause denial of service (memory corruption and application crash) potentially resulting in arbitrary code execution.
| Vendor | Product | Versions |
|---|---|---|
Apache Software Foundation | Apache OpenOffice | affected 4.0.0 to 4.1.3, and some previous releases, including some using our old OpenOffice.org brand |
References
1039735
vdb-entry
x_refsource_SECTRACK
https://www.openoffice.org/security/cves/CVE-2017-12608.html
x_refsource_CONFIRM
DSA-4022
vendor-advisory
x_refsource_DEBIAN
101585
vdb-entry
x_refsource_BID
[debian-lts-announce] 20171220 [SECURITY] [DLA 1214-1] libreoffice security update
mailing-list
x_refsource_MLIST
1039733
vdb-entry
x_refsource_SECTRACK
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now