CVE-2017-12608

Sažetak

A vulnerability in Apache OpenOffice Writer DOC file parser before 4.1.4, and specifically in ImportOldFormatStyles, allows attackers to craft malicious documents that cause denial of service (memory corruption and application crash) potentially resulting in arbitrary code execution.

Reference

https://www.openoffice.org/security/cves/CVE-2017-12608.html
https://www.debian.org/security/2017/dsa-4022
http://www.securitytracker.com/id/1039735
http://www.securitytracker.com/id/1039733
http://www.securityfocus.com/bid/101585
https://lists.debian.org/debian-lts-announce/2017/12/msg00017.html

CVSS

Base:	6.8
Impact:	6.4
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:M/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

07-02-2022 - 16:17

Objavljeno

20-11-2017 - 20:29