Published: 20/11/2017 Updated: 07/02/2022

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 605

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

A vulnerability in Apache OpenOffice Writer DOC file parser prior to 4.1.4, and specifically in ImportOldFormatStyles, allows malicious users to craft malicious documents that cause denial of service (memory corruption and application crash) potentially resulting in arbitrary code execution.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apache openoffice
debian debian linux 8.0
debian debian linux 7.0

LibreOffice could be made to crash or run programs as your login if it opened a specially crafted file ...

Marcin Noga discovered two vulnerabilities in LibreOffice, which could result in the execution of arbitrary code if a malformed PPT or DOC document is opened For the oldstable distribution (jessie), these problems have been fixed in version 1:433-2+deb8u9 These vulnerabilities were fixed in Libreoffice 502, so the version in the stable distri ...

A vulnerability in Apache OpenOffice Writer DOC file parser before 414, and specifically in ImportOldFormatStyles, allows attackers to craft malicious documents that cause denial of service (memory corruption and application crash) potentially resulting in arbitrary code execution ...

CWE-787 https://www.openoffice.org/security/cves/CVE-2017-12608.html https://www.debian.org/security/2017/dsa-4022 http://www.securitytracker.com/id/1039735 http://www.securitytracker.com/id/1039733 http://www.securityfocus.com/bid/101585 https://lists.debian.org/debian-lts-announce/2017/12/msg00017.html https://usn.ubuntu.com/3472-1/https://nvd.nist.gov

CVE-2017-12608

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect