vulnerability

Apache OpenOffice: CVE-2017-12608: Out-of-Bounds Write in Writer's ImportOldFormatStyles

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:M/Au:N/C:P/I:P/A:P)	Nov 20, 2017	Sep 12, 2025	Sep 12, 2025

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

Nov 20, 2017

Added

Sep 12, 2025

Modified

Sep 12, 2025

Description

A vulnerability in Apache OpenOffice Writer DOC file parser before 4.1.4, and specifically in ImportOldFormatStyles, allows attackers to craft malicious documents that cause denial of service (memory corruption and application crash) potentially resulting in arbitrary code execution.

Solution

apache-openoffice-upgrade-latest

References

CWE-787
CVE-2017-12608
https://attackerkb.com/topics/CVE-2017-12608
URL-https://www.openoffice.org/security/cves/CVE-2017-12608.html

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today