[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248268

 
 

909

 
 

195051

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2007-4575Date: (C)2007-12-05   (M)2023-12-22


HSQLDB before 1.8.0.9, as used in OpenOffice.org (OOo) 2 before 2.3.1, allows user-assisted remote attackers to execute arbitrary Java code via crafted database documents, related to "exposing static java methods."

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 9.3
Exploit Score: 8.6
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
SECTRACK-1019041
SUNALERT-103141
SUNALERT-200637
BID-26703
SECUNIA-27914
SECUNIA-27916
SECUNIA-27928
SECUNIA-27931
SECUNIA-27972
SECUNIA-28018
SECUNIA-28039
SECUNIA-28286
SECUNIA-28585
SECUNIA-30100
ADV-2007-4092
ADV-2007-4146
DSA-1419
FEDORA-2007-4119
FEDORA-2007-4120
FEDORA-2007-4171
FEDORA-2007-4172
FEDORA-2007-762
GLSA-200712-25
MDVSA-2008:095
RHSA-2007:1048
RHSA-2007:1090
RHSA-2008:0151
RHSA-2008:0158
RHSA-2008:0213
SUSE-SA:2007:067
USN-609-1
http://bugs.gentoo.org/show_bug.cgi?id=200771
http://bugs.gentoo.org/show_bug.cgi?id=201799
http://www.openoffice.org/security/cves/CVE-2007-4575.html
openoffice-hsqldb-code-execution(38882)
oval:org.mitre.oval:def:10153

CWE    1
CWE-94
OVAL    1
oval:org.secpod.oval:def:301354

© SecPod Technologies