Back to search
CVE-2017-9806
Published: Nov 20, 2017
Modified: Sep 16, 2024
PUBLISHED
Description
A vulnerability in the OpenOffice Writer DOC file parser before 4.1.4, and specifically in the WW8Fonts Constructor, allows attackers to craft malicious documents that cause denial of service (memory corruption and application crash) potentially resulting in arbitrary code execution.
| Vendor | Product | Versions |
|---|---|---|
Apache Software Foundation | Apache OpenOffice | affected 4.0.0 to 4.1.3, and some previous releases, including some using our old OpenOffice.org brand |
References
http://www.openoffice.org/security/cves/CVE-2017-9806.html
x_refsource_CONFIRM
101585
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now