The host is installed with Apache OpenOffice before 4.1.11 and is prone to an improper verification of cryptographic signature vulnerability. A flaw is present in the application, which fails to properly validate an untrusted digital signature. Successful exploitation could allow an attacker to convert an untrusted digital signature into trusted ones and change the content of the ODF document without invalidating the signature.