The vulnerability of the JavaScript File Handler component in the office online package ONLYOFFICE DocumentServer allows a hacker to execute arbitrary code.

The vulnerability of the JavaScript File Handler component in the ONLYOFFICE DocumentServer online package relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code by launching a specially crafted JavaScri...