665 matches found
Mandriva Linux Security Advisory : openoffice.org (MDVSA-2008:095)
A vulnerability in HSQLDB before 1.8.0.9 in OpenOffice.org could allow user-assisted remote attackers to execute arbitrary Java code via crafted database documents CVE-2007-4575. A heap overflow was discovered in OpenOffice.org's EMF parser. An attacker could create a carefully crafted EMF file...
Command Execution in Hannon Hill Cascade Server
Emory University UTS Security Advisory EMORY-2009-01 Topic: Command Execution in Hannon Hill Cascade Server Original release date: March 19, 2009 SUMMARY ======= Hannon Hill's Cascade Server product is vulnerable to a command execution vulnerability. An attacker with access to an unprivileged...
Hannon Hill Cascade Server Command Execution Vulnerability (post auth)
No description provided by source. Emory University UTS Security Advisory EMORY-2009-01 Topic: Command Execution in Hannon Hill Cascade Server Original release date: March 19, 2009 SUMMARY ======= Hannon Hill's Cascade Server product is vulnerable to a command execution vulnerability. An attacker...
Hannon Hill Cascade Server Command Execution Vulnerability (post auth)
Exploit for cgi platform in category web applications ====================================================================== Hannon Hill Cascade Server Command Execution Vulnerability post auth ====================================================================== Emory University UTS Security...
Hannon Hill Cascade Server - (Authenticated) Command Execution
Emory University UTS Security Advisory EMORY-2009-01 Topic: Command Execution in Hannon Hill Cascade Server Original release date: March 19, 2009 SUMMARY ======= Hannon Hill's Cascade Server product is vulnerable to a command execution vulnerability. An attacker with access to an unprivileged...
OpenOffice.org-base allows Denial-of-Service and command injection
HSQLDB before 1.8.0.9, as used in OpenOffice.org OOo 2 before 2.3.1, allows user-assisted remote attackers to execute arbitrary Java code via crafted database documents, related to "exposing static java methods."...
Debian Security Advisory DSA 1419-1 (openoffice.org, hsqldb)
The remote host is missing an update to openoffice.org, hsqldb announced via advisory DSA 1419-1. OpenVAS Vulnerability Test $Id: deb14191.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1419-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
OpenOffice HSQLDB Database Engine Unspecified Java Code Execution Vulnerability
Bugtraq ID: 26703 CVE: CVE-2007-4575 OpenOffice is prone to a code-execution vulnerability. Successful exploits allow remote attackers to execute arbitrary Java code in the context of the vulnerable application. Versions prior to OpenOffice 2.3.1 are vulnerable. Sun StarSuite 8 Sun StarOffice 8.0...
GLSA-200712-25 : OpenOffice.org: User-assisted arbitrary code execution
The remote host is affected by the vulnerability described in GLSA-200712-25 OpenOffice.org: User-assisted arbitrary code execution The HSQLDB engine, as used in Openoffice.org, does not properly enforce restrictions to SQL statements. Impact : A remote attacker could entice a user to open a...
OpenOffice.org: User-assisted arbitrary code execution
Background OpenOffice.org is an open source office productivity suite, including word processing, spreadsheet, presentation, drawing, data charting, formula editing, and file conversion facilities. Description The HSQLDB engine, as used in Openoffice.org, does not properly enforce restrictions to...
CVE-2007-6382
The Event Dispatch Thread in Robocode before 1.5.1 allows remote attackers to execute arbitrary Java code by using a robot to invoke the SwingUtilities.invokeLater method...
CVE-2007-6382
The Event Dispatch Thread in Robocode before 1.5.1 allows remote attackers to execute arbitrary Java code by using a robot to invoke the SwingUtilities.invokeLater method...
CVE-2007-4575
HSQLDB before 1.8.0.9, as used in OpenOffice.org OOo 2 before 2.3.1, allows user-assisted remote attackers to execute arbitrary Java code via crafted database documents, related to "exposing static java methods."...
CVE-2007-4575
HSQLDB before 1.8.0.9, as used in OpenOffice.org OOo 2 before 2.3.1, allows user-assisted remote attackers to execute arbitrary Java code via crafted database documents, related to "exposing static java methods."...
[SECURITY] [DSA 1419-1] New OpenOffice.org packages fix arbitrary Java code execution
-------------------------------------------------------------------------- Debian Security Advisory DSA 1419-1 [email protected] http://www.debian.org/security/ Martin Schulze December 5th, 2007 http://www.debian.org/security/faq -...
OpenOffice.org-base allows Denial-of-Service and command injection
HSQLDB before 1.8.0.9, as used in OpenOffice.org OOo 2 before 2.3.1, allows user-assisted remote attackers to execute arbitrary Java code via crafted database documents, related to "exposing static java methods."...
OpenOffice.org-base allows Denial-of-Service and command injection
HSQLDB before 1.8.0.9, as used in OpenOffice.org OOo 2 before 2.3.1, allows user-assisted remote attackers to execute arbitrary Java code via crafted database documents, related to "exposing static java methods."...
Sun OpenOffice.org < 2.3.1 Database HSQLDB Database Document Handling Arbitrary Java Code Execution
The remote host is running a version of Sun Microsystems OpenOffice.org that contains an arbitrary code execution vulnerability in its HSQLDB database engine. If a remote attacker can trick a user into opening a specially crafted database, this issue can be leveraged to execute arbitrary static...
[SECURITY] [DSA 1419-1] New OpenOffice.org packages fix arbitrary Java code execution
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 1419-1 [email protected] http://www.debian.org/security/ Martin Schulze December 5th, 2007 http://www.debian.org/security/faq -...
hsqldb / OpenOffice code execution
It's possible to execute Java code embedded to OpenOffice database document...