Vulnerability Details CVE-2017-12607
A vulnerability in OpenOffice's PPT file parser before 4.1.4, and specifically in PPTStyleSheet, allows attackers to craft malicious documents that cause denial of service (memory corruption and application crash) potentially resulting in arbitrary code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 69.2%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 6.8
References
- http://www.securityfocus.com/bid/101585
- http://www.securitytracker.com/id/1039732
- http://www.securitytracker.com/id/1039734
- https://lists.debian.org/debian-lts-announce/2017/12/msg00017.html
- https://www.debian.org/security/2017/dsa-4022
- https://www.openoffice.org/security/cves/CVE-2017-12607.html
- http://www.securityfocus.com/bid/101585
- http://www.securitytracker.com/id/1039732
- http://www.securitytracker.com/id/1039734
- https://lists.debian.org/debian-lts-announce/2017/12/msg00017.html
- https://www.debian.org/security/2017/dsa-4022
- https://www.openoffice.org/security/cves/CVE-2017-12607.html
Products affected by CVE-2017-12607
-
cpe:2.3:a:apache:openoffice:-
-
cpe:2.3:a:apache:openoffice:1.0.2
-
cpe:2.3:a:apache:openoffice:1.0.3
-
cpe:2.3:a:apache:openoffice:1.1.0
-
cpe:2.3:a:apache:openoffice:1.1.4
-
cpe:2.3:a:apache:openoffice:1.1.5
-
cpe:2.3:a:apache:openoffice:2.0.0
-
cpe:2.3:a:apache:openoffice:2.0.1
-
cpe:2.3:a:apache:openoffice:2.0.2
-
cpe:2.3:a:apache:openoffice:2.0.3
-
cpe:2.3:a:apache:openoffice:2.0.4
-
cpe:2.3:a:apache:openoffice:2.1.0
-
cpe:2.3:a:apache:openoffice:2.2.0
-
cpe:2.3:a:apache:openoffice:2.2.1
-
cpe:2.3:a:apache:openoffice:2.3.0
-
cpe:2.3:a:apache:openoffice:2.3.1
-
cpe:2.3:a:apache:openoffice:2.4.0
-
cpe:2.3:a:apache:openoffice:2.4.1
-
cpe:2.3:a:apache:openoffice:2.4.2
-
cpe:2.3:a:apache:openoffice:2.4.3
-
cpe:2.3:a:apache:openoffice:3.0.0
-
cpe:2.3:a:apache:openoffice:3.0.1
-
cpe:2.3:a:apache:openoffice:3.1.0
-
cpe:2.3:a:apache:openoffice:3.1.1
-
cpe:2.3:a:apache:openoffice:3.2.0
-
cpe:2.3:a:apache:openoffice:3.2.1
-
cpe:2.3:a:apache:openoffice:3.3.0
-
cpe:2.3:a:apache:openoffice:3.4.0
-
cpe:2.3:a:apache:openoffice:3.4.1
-
cpe:2.3:a:apache:openoffice:4.0.0
-
cpe:2.3:a:apache:openoffice:4.0.1
-
cpe:2.3:a:apache:openoffice:4.1.0
-
cpe:2.3:a:apache:openoffice:4.1.1
-
cpe:2.3:a:apache:openoffice:4.1.2
-
cpe:2.3:a:apache:openoffice:4.1.3
-
cpe:2.3:o:debian:debian_linux:7.0
-
cpe:2.3:o:debian:debian_linux:8.0