Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2007:1090
HistoryDec 05, 2007 - 12:00 a.m.

(RHSA-2007:1090) Moderate: openoffice.org2 security update

2007-12-0500:00:00
access.redhat.com
12

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.024 Low

EPSS

Percentile

88.8%

JSON

OpenOffice.org is an office productivity suite.
HSQLDB is the default database engine shipped with OpenOffice.org 2.

It was discovered that HSQLDB could allow the execution of arbitrary public
static Java methods. A carefully crafted odb file opened in OpenOffice.org
Base could execute arbitrary commands with the permissions of the user
running OpenOffice.org. (CVE-2007-4575)

All users of OpenOffice.org are advised to upgrade to these updated
packages, which contain a backported patch to resolve this issue.

OSVersionArchitecturePackageVersionFilename
RedHatanyppcopenoffice.org2-langpack-fr<ย 2.0.4-5.7.0.3.0openoffice.org2-langpack-fr-2.0.4-5.7.0.3.0.ppc.rpm
RedHatanyi386openoffice.org2-langpack-zh_tw<ย 2.0.4-5.7.0.3.0openoffice.org2-langpack-zh_TW-2.0.4-5.7.0.3.0.i386.rpm
RedHatanyppcopenoffice.org2-langpack-af_za<ย 2.0.4-5.7.0.3.0openoffice.org2-langpack-af_ZA-2.0.4-5.7.0.3.0.ppc.rpm
RedHatanysrcopenoffice.org2<ย 2.0.4-5.7.0.3.0openoffice.org2-2.0.4-5.7.0.3.0.src.rpm
RedHatanyppcopenoffice.org2-langpack-bn<ย 2.0.4-5.7.0.3.0openoffice.org2-langpack-bn-2.0.4-5.7.0.3.0.ppc.rpm
RedHatanyi386openoffice.org2-langpack-bg_bg<ย 2.0.4-5.7.0.3.0openoffice.org2-langpack-bg_BG-2.0.4-5.7.0.3.0.i386.rpm
RedHatanyi386openoffice.org2-langpack-es<ย 2.0.4-5.7.0.3.0openoffice.org2-langpack-es-2.0.4-5.7.0.3.0.i386.rpm
RedHatanyi386openoffice.org2-langpack-nn_no<ย 2.0.4-5.7.0.3.0openoffice.org2-langpack-nn_NO-2.0.4-5.7.0.3.0.i386.rpm
RedHatanyppcopenoffice.org2-testtools<ย 2.0.4-5.7.0.3.0openoffice.org2-testtools-2.0.4-5.7.0.3.0.ppc.rpm
RedHatanyi386openoffice.org2-math<ย 2.0.4-5.7.0.3.0openoffice.org2-math-2.0.4-5.7.0.3.0.i386.rpm
Rows per page:
1-10 of 1171

Related

openvas 33
suse 1
fedora 9
securityvulns 2
debian 1
nessus 36
cve 2
debiancve 1
seebug 2
gentoo 1
prion 2
canvas 1
veracode 1
ubuntucve 1
centos 1
redhat 2
ubuntu 1
openvas
openvas
Debian Security Advisory DSA 1419-1 (openoffice.org, hsqldb)
2008-01-17 00:00:00
Fedora Update for hsqldb FEDORA-2007-4171
2009-02-24 00:00:00
SuSE Update for OpenOffice_org SUSE-SA:2007:067
2009-01-28 00:00:00
suse
suse
remote code execution in OpenOffice_org
2007-12-11 13:56:46
fedora
fedora
[SECURITY] Fedora Core 6 Update: openoffice.org-2.0.4-5.5.25
2007-12-07 17:31:39
[SECURITY] Fedora 8 Update: openoffice.org-2.3.0-6.7.fc8
2007-12-07 18:22:50
[SECURITY] Fedora 7 Update: openoffice.org-2.3.0-6.5.fc7
2007-12-07 18:17:15
securityvulns
securityvulns
[SECURITY] [DSA 1419-1] New OpenOffice.org packages fix arbitrary Java code execution
2007-12-05 00:00:00
hsqldb / OpenOffice code execution
2007-12-05 00:00:00
debian
debian
[SECURITY] [DSA 1419-1] New OpenOffice.org packages fix arbitrary Java code execution
2007-12-05 15:19:43
nessus
nessus
Scientific Linux Security Update : openoffice.org2 on SL4.5 i386/x86_64
2012-08-01 00:00:00
Debian DSA-1419-1 : openoffice.org - programming error
2007-12-07 00:00:00
Sun OpenOffice.org < 2.3.1 Database HSQLDB Database Document Handling Arbitrary Java Code Execution
2007-12-05 00:00:00
cve
cve
CVE-2007-4575
2007-12-06 02:46:00
CVE-2007-4576
2008-01-29 02:00:00
debiancve
debiancve
CVE-2007-4575
2007-12-06 02:46:00
seebug
seebug
OpenOffice HSQLDB Database Engine Unspecified Java Code Execution Vulnerability
2008-01-01 00:00:00
OpenOffice HSQLDBๆ•ฐๆฎๅบ“ๅผ•ๆ“ŽJavaไปฃ็ ๆ‰ง่กŒๆผๆดž
2007-12-13 00:00:00
gentoo
gentoo
OpenOffice.org: User-assisted arbitrary code execution
2007-12-30 00:00:00
prion
prion
Design/Logic Flaw
2007-12-06 02:46:00
Design/Logic Flaw
2008-01-29 02:00:00
canvas
canvas
Immunity Canvas: OOO_230
2007-12-06 02:46:00
veracode
veracode
Remote Code Execution (RCE)
2018-09-05 01:13:14
ubuntucve
ubuntucve
CVE-2007-4575
2007-12-06 00:00:00
centos
centos
hsqldb, openoffice.org security update
2008-01-19 00:14:54
redhat
redhat
(RHSA-2007:1048) Moderate: openoffice.org, hsqldb security update
2007-12-05 00:00:00
(RHSA-2008:0158) Moderate: JBoss Enterprise Application Platform security update
2008-03-24 00:00:00
ubuntu
ubuntu
OpenOffice.org vulnerabilities
2008-05-06 00:00:00

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.024 Low

EPSS

Percentile

88.8%

JSON
Related for RHSA-2007:1090
openvas33suse1fedora9securityvulns2debian1nessus36cve2debiancve1seebug2gentoo1prion2canvas1veracode1ubuntucve1centos1redhat2ubuntu1