VDB
CVE-2017-12608
CVE-2017-12608
PUBLISHED
A vulnerability in Apache OpenOffice Writer DOC file parser before 4.1.4, and specifically in ImportOldFormatStyles, allows attackers to craft malicious documents that cause denial of service (memory corruption and application crash) potentially resulting in arbitrary code execution.
EPSS 1.15% · 78.9th percentile
Risk Scores
EPSS Score
1.15%
78.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:14.04:LTS | libreoffice | 0, 1:4.1.2~rc3-0ubuntu1, 1:4.1.2~rc3-0ubuntu2 |
Exploit Intelligence
- 1039735 (circl)
- https://www.openoffice.org/security/cves/CVE-2017-12608.html (circl)
- DSA-4022 (circl)
- 101585 (circl)
- [debian-lts-announce] 20171220 [SECURITY] [DLA 1214-1] libreoffice security update (circl)
- 1039733 (circl)
Timeline
- Nov 1, 2017 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Feb 4, 2022 EPSS Score
- Feb 28, 2022 EPSS Score
- May 2, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Sep 5, 2022 EPSS Score
- Nov 6, 2022 EPSS Score
- Jan 8, 2023 EPSS Score
References
- https://ubuntu.com/security/CVE-2017-12608 third-party-advisory
- https://www.talosintelligence.com/reports/TALOS-2017-0301 third-party-advisory
- https://www.libreoffice.org/about-us/security/advisories/CVE-2017-12608 third-party-advisory
- https://ubuntu.com/security/notices/USN-3472-1 vendor-advisory
- https://www.cve.org/CVERecord?id=CVE-2017-12608 third-party-advisory