← Back

Office Server Document Converter

office_server_document_converter

Vendor: Antennahouse • 8 CVEs

CVEs (8)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-20839
1Antennahouse
1Office Server Document Converter
Nov 21, 2024
Nov 1, 2021
N/A· v4
6.5 MEDIUM· v3
4.3 MEDIUM· v2
Office Server Document Converter V7.2MR4 and earlier and V7.1MR7 and earlier allows a remote unauthenticated attacker to conduct an XML External Entity (XXE) attack to cause a denial of service (DoS) condition to the oth...Show more
Office Server Document Converter V7.2MR4 and earlier and V7.1MR7 and earlier allows a remote unauthenticated attacker to conduct an XML External Entity (XXE) attack to cause a denial of service (DoS) condition to the other servers by processing a specially crafted XML document.Show less
CVE-2021-20838
1Antennahouse
1Office Server Document Converter
Nov 21, 2024
Nov 1, 2021
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Office Server Document Converter V7.2MR4 and earlier and V7.1MR7 and earlier allows a remote unauthenticated attacker to conduct an XML External Entity (XXE) attack to cause a denial of service (DoS) condition by process...Show more
Office Server Document Converter V7.2MR4 and earlier and V7.1MR7 and earlier allows a remote unauthenticated attacker to conduct an XML External Entity (XXE) attack to cause a denial of service (DoS) condition by processing a specially crafted XML document.Show less
CVE-2018-3936
1Antennahouse
1Office Server Document Converter
Nov 21, 2024
Jul 11, 2018
N/A· v4
7.8 HIGH· v3
6.8 MEDIUM· v2
In Antenna House Office Server Document Converter version V6.1 Pro MR2 for Linux64 (6,1,2018,0312), a crafted Microsoft Word (DOC) document can lead to an out-of-bounds write, resulting in remote code execution.
CVE-2018-3933
1Antennahouse
1Office Server Document Converter
Nov 21, 2024
Jul 11, 2018
N/A· v4
7.8 HIGH· v3
6.8 MEDIUM· v2
An exploitable out-of-bounds write exists in the Microsoft Word document conversion functionality of the Antenna House Office Server Document Converter version V6.1 Pro MR2 for Linux64 (6,1,2018,0312). A crafted Microsof...Show more
An exploitable out-of-bounds write exists in the Microsoft Word document conversion functionality of the Antenna House Office Server Document Converter version V6.1 Pro MR2 for Linux64 (6,1,2018,0312). A crafted Microsoft Word (DOC) document can lead to an out-of-bounds write, resulting in remote code execution. This vulnerability occurs in the `vbputanld` method.Show less
CVE-2018-3932
1Antennahouse
1Office Server Document Converter
Nov 21, 2024
Jul 11, 2018
N/A· v4
7.8 HIGH· v3
6.8 MEDIUM· v2
An exploitable stack-based buffer overflow exists in the Microsoft Word document conversion functionality of the Antenna House Office Server Document Converter version V6.1 Pro MR2 for Linux64 (6,1,2018,0312). A crafted...Show more
An exploitable stack-based buffer overflow exists in the Microsoft Word document conversion functionality of the Antenna House Office Server Document Converter version V6.1 Pro MR2 for Linux64 (6,1,2018,0312). A crafted Microsoft Word (DOC) document can lead to a stack-based buffer overflow, resulting in remote code execution.Show less
CVE-2018-3931
1Antennahouse
1Office Server Document Converter
Nov 21, 2024
Jul 11, 2018
N/A· v4
7.8 HIGH· v3
6.8 MEDIUM· v2
In Antenna House Office Server Document Converter version V6.1 Pro MR2 for Linux64 (6,1,2018,0312), a crafted Microsoft Word (DOC) document can lead to an out-of-bounds write, resulting in remote code execution. This vul...Show more
In Antenna House Office Server Document Converter version V6.1 Pro MR2 for Linux64 (6,1,2018,0312), a crafted Microsoft Word (DOC) document can lead to an out-of-bounds write, resulting in remote code execution. This vulnerability occurs in the `putShapeProperty` method.Show less
CVE-2018-3930
1Antennahouse
1Office Server Document Converter
Nov 21, 2024
Jul 11, 2018
N/A· v4
7.8 HIGH· v3
6.8 MEDIUM· v2
In Antenna House Office Server Document Converter version V6.1 Pro MR2 for Linux64 (6,1,2018,0312), a crafted Microsoft Word (DOC) document can lead to an out-of-bounds write, resulting in remote code execution. This vul...Show more
In Antenna House Office Server Document Converter version V6.1 Pro MR2 for Linux64 (6,1,2018,0312), a crafted Microsoft Word (DOC) document can lead to an out-of-bounds write, resulting in remote code execution. This vulnerability occurs in the `vbgetfp` method.Show less
CVE-2018-3929
1Antennahouse
1Office Server Document Converter
Nov 21, 2024
Jul 11, 2018
N/A· v4
7.8 HIGH· v3
6.8 MEDIUM· v2
An exploitable heap corruption exists in the PowerPoint document conversion functionality of the Antenna House Office Server Document Converter version V6.1 Pro MR2 for Linux64 (6,1,2018,0312). A crafted PowerPoint (PPT)...Show more
An exploitable heap corruption exists in the PowerPoint document conversion functionality of the Antenna House Office Server Document Converter version V6.1 Pro MR2 for Linux64 (6,1,2018,0312). A crafted PowerPoint (PPT) document can lead to heap corruption, resulting in remote code execution.Show less