Lucene search

[email protected]NVD:CVE-2007-4575

HistoryDec 06, 2007 - 2:46 a.m.

CVE-2007-4575

2007-12-0602:46:00

CWE-94

[email protected]

web.nvd.nist.gov

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.2 High

AI Score

Confidence

Low

0.029 Low

EPSS

Percentile

90.9%

JSON

HSQLDB before 1.8.0.9, as used in OpenOffice.org (OOo) 2 before 2.3.1, allows user-assisted remote attackers to execute arbitrary Java code via crafted database documents, related to “exposing static java methods.”

Affected configurations

NVD

Node

openofficeopenofficeRange≤2.3

openofficeopenofficeMatch2.0.1

openofficeopenofficeMatch2.0.2

openofficeopenofficeMatch2.0.3

openofficeopenofficeMatch2.0.3_1

openofficeopenofficeMatch2.0.4

openofficeopenofficeMatch2.0beta

openofficeopenofficeMatch2.1

openofficeopenofficeMatch2.2

openofficeopenofficeMatch2.2.1

References

bugs.gentoo.org/show_bug.cgi?id=200771

bugs.gentoo.org/show_bug.cgi?id=201799

lists.opensuse.org/opensuse-security-announce/2007-12/msg00005.html

secunia.com/advisories/27914

secunia.com/advisories/27916

secunia.com/advisories/27928

secunia.com/advisories/27931

secunia.com/advisories/27972

secunia.com/advisories/28018

secunia.com/advisories/28039

secunia.com/advisories/28286

secunia.com/advisories/28585

secunia.com/advisories/30100

sunsolve.sun.com/search/document.do?assetkey=1-26-103141-1

sunsolve.sun.com/search/document.do?assetkey=1-66-200637-1

www.debian.org/security/2007/dsa-1419

www.gentoo.org/security/en/glsa/glsa-200712-25.xml

www.mandriva.com/security/advisories?name=MDVSA-2008:095

www.openoffice.org/security/cves/CVE-2007-4575.html

www.redhat.com/archives/fedora-package-announce/2007-December/msg00134.html

www.redhat.com/archives/fedora-package-announce/2007-December/msg00155.html

www.redhat.com/archives/fedora-package-announce/2007-December/msg00281.html

www.redhat.com/support/errata/RHSA-2007-1048.html

www.redhat.com/support/errata/RHSA-2007-1090.html

www.redhat.com/support/errata/RHSA-2008-0151.html

www.redhat.com/support/errata/RHSA-2008-0158.html

www.redhat.com/support/errata/RHSA-2008-0213.html

www.securityfocus.com/bid/26703

www.securitytracker.com/id?1019041

www.ubuntu.com/usn/usn-609-1

www.vupen.com/english/advisories/2007/4092

www.vupen.com/english/advisories/2007/4146

exchange.xforce.ibmcloud.com/vulnerabilities/38882

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10153

www.redhat.com/archives/fedora-package-announce/2008-January/msg00678.html

www.redhat.com/archives/fedora-package-announce/2008-January/msg00753.html

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.2 High

AI Score

Confidence

Low

0.029 Low

EPSS

Percentile

90.9%

JSON

Related for NVD:CVE-2007-4575

nessus36 openvas33 seebug2 fedora9 gentoo1 securityvulns2 debian1 suse1 redhat3 cve2 debiancve1 ubuntucve1 canvas1 prion2 veracode1 cvelist1 nvd1 centos1 ubuntu1